last executing test programs: 1m33.471239103s ago: executing program 3 (id=923): socket$alg(0x26, 0x5, 0x0) io_submit(0x0, 0x0, 0x0) socket(0x2, 0x80805, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r3) ptrace$setregs(0xd, r3, 0x0, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b3") ptrace$getregset(0x4205, r3, 0x2, &(0x7f0000000180)={&(0x7f0000000000)=""/120, 0x78}) ptrace$getregset(0x4204, r3, 0x2, &(0x7f0000000740)={0x0}) 1m32.15236312s ago: executing program 3 (id=927): bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f00000004c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x5, [@enum={0x3}]}, {0x0, [0x2e, 0x61, 0x5f]}}, 0x0, 0x29, 0x0, 0x1}, 0x28) 1m31.876192295s ago: executing program 3 (id=929): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x2010008, &(0x7f0000000200)={[{@inlinecrypt}, {@inlinecrypt}, {}]}, 0xff, 0x54a, &(0x7f0000000340)="$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") mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x1000021, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x81) ioctl$FITRIM(r0, 0xc0185879, &(0x7f00000000c0)={0x3, 0x1731b, 0x3}) 1m31.758003861s ago: executing program 3 (id=931): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) futimesat(0xffffffffffffffff, 0x0, 0x0) 1m31.436859307s ago: executing program 3 (id=933): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x200080c0, &(0x7f00000001c0)={0xa, 0x2, 0x8000, @loopback, 0x8}, 0x1c) setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='cdg', 0x3) shutdown(r0, 0x1) 1m31.096016405s ago: executing program 3 (id=935): sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f0000000200)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x48, 0xffffffffffffffff) bpf$MAP_CREATE(0x0, 0x0, 0x50) syz_emit_ethernet(0x1f, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800714, &(0x7f0000000500), 0xf7, 0x485, &(0x7f0000001040)="$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") sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=@updpolicy={0x1fc, 0x19, 0x1, 0x70bd25, 0x0, {{@in6=@private2, @in6=@mcast1, 0x0, 0x3, 0x0, 0x0, 0xa, 0x0, 0x20, 0x8}, {0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1d}, {0x0, 0xd42, 0x0, 0x2dd}, 0x0, 0x6e6bc0}, [@tmpl={0x144, 0x5, [{{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x33}, 0x0, @in=@dev={0xac, 0x14, 0x14, 0xc}, 0x0, 0x0, 0x0, 0xff}, {{@in=@broadcast, 0x0, 0x32}, 0x0, @in6=@empty}, {{@in6=@mcast2, 0x0, 0x3c}, 0x2, @in=@remote, 0x0, 0x1, 0x3}, {{@in6=@ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}, 0x0, 0x32}, 0x2, @in=@empty, 0xffffffff, 0x0, 0x0, 0x0, 0x3}, {{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, 0x32}, 0x0, @in=@broadcast, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}]}]}, 0x1fc}}, 0x0) fsopen(&(0x7f00000001c0)='bpf\x00', 0x0) fchmodat(0xffffffffffffff9c, &(0x7f0000000180)='.\x00', 0xfffffed3) symlink(&(0x7f0000000440)='./cgroup.cpu/cgroup.procs\x00', &(0x7f0000000980)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') syz_open_dev$tty1(0xc, 0x4, 0x1) 1m15.320651956s ago: executing program 32 (id=935): sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f0000000200)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x48, 0xffffffffffffffff) bpf$MAP_CREATE(0x0, 0x0, 0x50) syz_emit_ethernet(0x1f, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800714, &(0x7f0000000500), 0xf7, 0x485, &(0x7f0000001040)="$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") sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=@updpolicy={0x1fc, 0x19, 0x1, 0x70bd25, 0x0, {{@in6=@private2, @in6=@mcast1, 0x0, 0x3, 0x0, 0x0, 0xa, 0x0, 0x20, 0x8}, {0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1d}, {0x0, 0xd42, 0x0, 0x2dd}, 0x0, 0x6e6bc0}, [@tmpl={0x144, 0x5, [{{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x33}, 0x0, @in=@dev={0xac, 0x14, 0x14, 0xc}, 0x0, 0x0, 0x0, 0xff}, {{@in=@broadcast, 0x0, 0x32}, 0x0, @in6=@empty}, {{@in6=@mcast2, 0x0, 0x3c}, 0x2, @in=@remote, 0x0, 0x1, 0x3}, {{@in6=@ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}, 0x0, 0x32}, 0x2, @in=@empty, 0xffffffff, 0x0, 0x0, 0x0, 0x3}, {{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, 0x32}, 0x0, @in=@broadcast, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}]}]}, 0x1fc}}, 0x0) fsopen(&(0x7f00000001c0)='bpf\x00', 0x0) fchmodat(0xffffffffffffff9c, &(0x7f0000000180)='.\x00', 0xfffffed3) symlink(&(0x7f0000000440)='./cgroup.cpu/cgroup.procs\x00', &(0x7f0000000980)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') syz_open_dev$tty1(0xc, 0x4, 0x1) 12.682645297s ago: executing program 2 (id=1333): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x1, 0x4, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x8031, 0xffffffffffffffff, 0x2b8dc000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000000180), 0x1000) 9.178504698s ago: executing program 2 (id=1346): socket$inet6_tcp(0xa, 0x1, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r3 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c) sendto$inet6(r3, &(0x7f0000000100)="b8", 0xffe0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c) r4 = socket$netlink(0x10, 0x3, 0x4) writev(r4, &(0x7f0000000080)=[{&(0x7f0000000340)="480000001400190d09034beafd0d36020a841a000000230f00000000a2bc5603ca00000f7f89004e00200000000101ff00c00e03000200000000000000000300005839c900910000", 0x48}], 0x1) 7.948195091s ago: executing program 1 (id=1352): socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f00000000c0)=[{0x20, 0x0, 0x2, 0xfffff010}, {0x20, 0x0, 0x20, 0xfffff034}, {0x6}]}, 0x10) sendmmsg(r0, 0x0, 0x0, 0x0) 7.867891025s ago: executing program 1 (id=1354): syz_usb_connect(0x1, 0x3d, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x6, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x0, 0x0) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e23}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) io_setup(0x8, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) syz_open_dev$swradio(0x0, 0x1, 0x2) ioctl$SIOCSIFHWADDR(r3, 0x8924, 0x0) 7.447673967s ago: executing program 5 (id=1358): r0 = socket$inet6(0xa, 0x2, 0x3a) sendmsg$NL80211_CMD_TDLS_CHANNEL_SWITCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="a0"], 0xffd8}}, 0x4000000) socket$nl_netfilter(0x10, 0x3, 0xc) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000001c0)={[{@usrquota}, {@grpjquota}, {@lazytime}]}, 0x1, 0x4bc, &(0x7f0000000a40)="$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") quotactl$Q_GETNEXTQUOTA(0xffffffff80000901, &(0x7f0000000000)=@loop={'/dev/loop', 0x0}, 0xee00, 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) socket$unix(0x1, 0x1, 0x0) openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x3a98c2, 0x0) r1 = syz_open_dev$vim2m(&(0x7f0000002c80), 0x3, 0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0) r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) socket(0xb, 0x3, 0x1) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r3, 0x0, 0x40) ioctl$vim2m_VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f0000000140)={0x3, 0x1, 0x2}) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff) sendmsg$TIPC_NL_KEY_SET(r4, 0x0, 0x0) sendmsg$TIPC_NL_BEARER_SET(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000880)={0x34, r5, 0x1, 0x70bd27, 0x25dfdbfb, {}, [@TIPC_NLA_BEARER={0x20, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5da}]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x48c05}, 0x4040140) 6.42263329s ago: executing program 5 (id=1362): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000004c0), r0) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000500)={'wpan0\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r0, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)={0x20, r1, 0x1, 0x70bd25, 0x25dfdbfc, {}, [@NL802154_ATTR_SEC_DEVKEY={0x4}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r2}]}, 0x20}, 0x1, 0x0, 0x0, 0x40800}, 0x10) 6.329288364s ago: executing program 4 (id=1363): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0xfa, 0x0, 0xe4}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr', 0x3) sendmmsg$inet(r0, &(0x7f0000001240)=[{{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000b80)="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", 0x160}, {&(0x7f0000000fc0)="31cef842d9c50636f60fc0cfdac56c75f1687f0c56287423f5eed69f117e766bdbad0c2171ad6227e1173ab6efa2fcb1c420a51a0917861009000000f049c606ccab7cda1f0e3490fbe385ea382294882839a22674037b8910bd8a1420e33eb1be6f10cfb24eb7cccdf1528ef33b34ab07cdb0909a9ba9547e1e343b451d9025c4e153612d4674b9411fb4de295499abbcb388d291aa83e93db6cf9ab0954e6a8dfc19c3c1533a11d81e0382999bd736f1caacc2bbf1194598a652677efb930a5b6e", 0xc2}], 0x2}}, {{0x0, 0x0, &(0x7f0000000a00)=[{&(0x7f0000000640)="42e013913edbeb683c44e18a52b5a2462064ddd92caaba941de80d06047dedb7eeeff3a27eacf4c416b6979d6c918608807c44d01535dbaab3b390086e4fd43c6b5931187023646d6beac2340fdc7a0d81214ac76a818f64d287311e8828dfd3e3dd67efdb129a6e52745d1540e570891f6bf411cc16a18c4d34e522a1f003498f1a03ea1f8828b6c902286c71a9bc21923972dacfa74fef6a0fd3267e599c1dd33dff5d7b28f134bda4a29962fd5daa4fc9c515a1c3ee25ace1a9948c24b277d0c9c46f948f8a3f98b1a18eff685b7296457ba31632fea4d8f817817026eeb76460dad4f677de73043600e7", 0xec}, {&(0x7f0000000040)="7542473782798be019c27ed30b2b", 0xe}, {&(0x7f0000000300)="d6f6da22b14bf9ad2fbb765e446f21a90b8d398bc28c67ea1b14020f785656813f94f0a10a80cff62212b5842b9740c2e7c8cbc7ad801a6ec481d22ff828b1ba477f736c1712a1334158d7df5bc9584acb5112d5ca2ba8ac448a37a5347342781c320dd5dcb867490334", 0x6a}, {&(0x7f0000000740)="b176d469f44ff7e206a24a3a5f3a112da355134ae64fde53dc0e681885ead332aa45811c0070066fb0e5cf5a9a4965475953e2a028f7dd4a6ed8b33465fd161cd8dce309f6be32236cf8e07a5506acb719304ebc71b2a3756cb0832d928d432d1506d368e2b001a8b392dad3dc2916376732339a20db54405b716ea85c9a4d8f23", 0x81}], 0x4}}], 0x2, 0x2090) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4) sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0) 6.311198975s ago: executing program 0 (id=1364): socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f00000000c0)=[{0x20, 0x0, 0x2, 0xfffff010}, {0x20, 0x0, 0x20, 0xfffff034}, {0x6}]}, 0x10) sendmmsg(r0, 0x0, 0x0, 0x0) 6.306401485s ago: executing program 2 (id=1365): r0 = socket$netlink(0x10, 0x3, 0x10) bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000040)=0x8000001b, 0x4) 6.252616038s ago: executing program 0 (id=1366): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]}) personality(0xfe47fef9f5ff7379) 6.156208903s ago: executing program 2 (id=1367): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1}) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000600)={'pim6reg1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}) pread64(r0, &(0x7f0000002200)=""/87, 0x57, 0xfffd) 6.155991173s ago: executing program 0 (id=1368): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x49845) sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, &(0x7f0000001d00)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x80000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8004}, 0x8000) r0 = io_uring_setup(0x4fee, &(0x7f0000000040)={0x0, 0x3cb1, 0x1c080, 0x1, 0x20002f7}) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000001700)}], 0x1, 0x0) io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0) 6.155130063s ago: executing program 5 (id=1369): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0xfa, 0x0, 0xe4}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr', 0x3) sendmmsg$inet(r0, &(0x7f0000001240)=[{{0x0, 0x0, &(0x7f0000001dc0)=[{&(0x7f0000000140)="91f8a9849519def28691bbc4173c3d6f357d0272b7319130feaab952ac4703cad04be68907e50e997fc26e4c91ea4feb931647fc5393de25000000000000000000", 0x41}, {&(0x7f0000000e80)="44900000000056ee66c372f3105eb186dd8062fad2d5b5bfb0ba06f274a8d026bd209da8ffa6a26e3b3f8075704a9d0ef9aff7f1e7db24609f02d34e76992c9df9fe6888c6c9a4825c6223be6ac54536025af1dea54e527c68b0ff250261953f2da79a78104c2d9e7b16ed86b124945aa9ab7581ebd385fb61d442035db81e18c2d2462d0bb25fff9d3b1ce90b597992b2a4d541611ce77f58dce7c9500118229e7cdf4ca7f6adca92c73d97ce54164c1942b2568635bec8e020b41fb2f8000000000000000000000000000000001c8a9f7956583e26f6f0edc415851d0b8305fe66c2b7c114e3712d87744938848f24a13cb6040000000000000000", 0xfc}, {&(0x7f00000003c0)="641a6a2b863c0dd898013a3f97a834ebb75a925ab48c844221841a232932fc2e37e327de21450df098c113e1", 0x2c}, {&(0x7f00000001c0)="985e44efeabe001cabcf3d8673c3a254a9a2d3197970cb347b70a243bf77139a94bc3ae91684aaf7b7dff691deb8f8aef2d915fb3a0794a9a9b431a819bca6122c350637808dde804a048fd8696e524b2934126c44", 0x55}], 0x4}}, {{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000b80)="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", 0x160}, {&(0x7f0000000fc0)="31cef842d9c50636f60fc0cfdac56c75f1687f0c56287423f5eed69f117e766bdbad0c2171ad6227e1173ab6efa2fcb1c420a51a0917861009000000f049c606ccab7cda1f0e3490fbe385ea382294882839a22674037b8910bd8a1420e33eb1be6f10cfb24eb7cccdf1528ef33b34ab07cdb0909a9ba9547e1e343b451d9025c4e153612d4674b9411fb4de295499abbcb388d291aa83e93db6cf9ab0954e6a8dfc19c3c1533a11d81e0382999bd736f1caacc2bbf1194598a652677efb930a5b6e", 0xc2}], 0x2}}, {{0x0, 0x0, &(0x7f0000000a00)=[{&(0x7f0000000640)="42e013913edbeb683c44e18a52b5a2462064ddd92caaba941de80d06047dedb7eeeff3a27eacf4c416b6979d6c918608807c44d01535dbaab3b390086e4fd43c6b5931187023646d6beac2340fdc7a0d81214ac76a818f64d287311e8828dfd3e3dd67efdb129a6e52745d1540e570891f6bf411cc16a18c4d34e522a1f003498f1a03ea1f8828b6c902286c71a9bc21923972dacfa74fef6a0fd3267e599c1dd33dff5d7b28f134bda4a29962fd5daa4fc9c515a1c3ee25ace1a9948c24b277d0c9c46f948f8a3f98b1a18eff685b7296457ba31632fea4d8f817817026eeb76460dad4f677de73043600e7", 0xec}, {&(0x7f0000000040)="7542473782798be019c27ed30b2b", 0xe}, {&(0x7f0000000300)="d6f6da22b14bf9ad2fbb765e446f21a90b8d398bc28c67ea1b14020f785656813f94f0a10a80cff62212b5842b9740c2e7c8cbc7ad801a6ec481d22ff828b1ba477f736c1712a1334158d7df5bc9584acb5112d5ca2ba8ac448a37a5347342781c320dd5dcb867490334", 0x6a}, {&(0x7f0000000740)="b176d469f44ff7e206a24a3a5f3a112da355134ae64fde53dc0e681885ead332aa45811c0070066fb0e5cf5a9a4965475953e2a028f7dd4a6ed8b33465fd161cd8dce309f6be32236cf8e07a5506acb719304ebc71b2a3756cb0832d928d432d1506d368e2b001a8b392dad3dc2916376732339a20db54405b716ea85c9a4d8f232138345947e47c80f23fcac5422ee2fcf8bf7ef306ed29b3045ee6f25c76fbc9e8", 0xa2}], 0x4}}], 0x3, 0x2090) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4) sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0) 6.111547486s ago: executing program 4 (id=1371): socket$nl_generic(0x10, 0x3, 0x10) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) close(r0) socket(0x1e, 0x2, 0x0) socket(0x28, 0x5, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="540000000206010200000000000000000500000005000100060000000d000300686173683a6e6574000000000900020073797a31000000000c00078008000640000000400500050002000000050004"], 0x54}}, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_ADD(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x10040047}, 0x240008c4) 6.066881328s ago: executing program 0 (id=1372): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, 0x0, 0x0) sendto$inet6(r1, &(0x7f0000000040), 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r1, 0x84, 0x20, &(0x7f0000000080)=0x9b7f, 0x4) recvmmsg(r1, &(0x7f00000021c0)=[{{0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x4}], 0x1, 0x40000023, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="380000005400e50100", @ANYRES32, @ANYBLOB="010102007f"], 0x38}, 0x1, 0x0, 0x0, 0x400c884}, 0x4) openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) chdir(&(0x7f0000000100)='./file0\x00') sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x2400c808) prlimit64(0x0, 0xe, &(0x7f0000000000)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x40020000000002) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x2004d8b0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00'}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x40008c0) r3 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0) read$FUSE(r3, &(0x7f0000005180)={0x2020}, 0x2020) 5.554518524s ago: executing program 4 (id=1373): syz_open_dev$tty1(0xc, 0x4, 0x1) socket$nl_route(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeeb, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$inet6(0xa, 0x80002, 0x0) r3 = fsopen(&(0x7f0000001340)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0) r4 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f00000002c0)='cgroup.procs\x00', 0x2, 0x0) write$cgroup_pid(r4, &(0x7f0000001c00), 0x12) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000001900)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb}, 0x48) 5.452982579s ago: executing program 5 (id=1374): r0 = socket$inet6(0xa, 0x2, 0x3a) sendmsg$NL80211_CMD_TDLS_CHANNEL_SWITCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="a0"], 0xffd8}}, 0x4000000) socket$nl_netfilter(0x10, 0x3, 0xc) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000001c0)={[{@usrquota}, {@grpjquota}, {@lazytime}]}, 0x1, 0x4bc, &(0x7f0000000a40)="$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") quotactl$Q_GETNEXTQUOTA(0xffffffff80000901, &(0x7f0000000000)=@loop={'/dev/loop', 0x0}, 0xee00, 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) socket$unix(0x1, 0x1, 0x0) openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x3a98c2, 0x0) r1 = syz_open_dev$vim2m(&(0x7f0000002c80), 0x3, 0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0) r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) socket(0xb, 0x3, 0x1) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r3, 0x0, 0x40) ioctl$vim2m_VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f0000000140)={0x3, 0x1, 0x2}) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff) sendmsg$TIPC_NL_KEY_SET(r4, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0) sendmsg$TIPC_NL_BEARER_SET(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000880)={0x34, r5, 0x1, 0x70bd27, 0x25dfdbfb, {}, [@TIPC_NLA_BEARER={0x20, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5da}]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x48c05}, 0x4040140) 5.093889798s ago: executing program 2 (id=1375): r0 = socket$packet(0x11, 0x2, 0x300) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x20000, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(r1, 0xc0189371, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) 4.063227921s ago: executing program 0 (id=1376): socket$inet6_tcp(0xa, 0x1, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r3 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c) sendto$inet6(r3, &(0x7f0000000100)="b8", 0xffe0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c) r4 = socket$netlink(0x10, 0x3, 0x4) writev(r4, &(0x7f0000000080)=[{&(0x7f0000000340)="480000001400190d09034beafd0d36020a841a000000230f00000000a2bc5603ca00000f7f89004e00200000000101ff00c00e03000200000000000000000300005839c900910000", 0x48}], 0x1) 4.062804561s ago: executing program 1 (id=1377): r0 = socket$kcm(0xa, 0x3, 0x3a) sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @loopback={0xffffffffffff0000, 0xac14140c}}, 0x80, &(0x7f0000000400)=[{&(0x7f0000000140)="8b", 0x1}, {&(0x7f0000000280)="a8703b", 0x3}], 0x2, 0x0, 0x0, 0x900}, 0x60) 4.059815781s ago: executing program 4 (id=1378): bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb0108180000000000000028000000280000000200000000000000000000da80039e9e042f4dcf108f692a21ca030000000003000000060000000000000003"], 0x0, 0x42}, 0x28) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x0, 0x0, &(0x7f0000000180)='syzkaller\x00', 0x6, 0x0, 0x0, 0x41000, 0x69, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94) readlink(0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0) clock_getres(0x97f489cd154b7916, 0x0) syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x10, &(0x7f0000000080)=ANY=[@ANYBLOB="666c7573682c757466383d312c6e6f6e756d7461696c3d302c726f6469722c757466383d312c6e6f6e756d7461696c3d302c73686f72746e616d653d6c6f7765722c6e6f6e756d7461696c3d302c756e695f786c6174653d302c757466383d312c756e695f786c6174653d302c757466383d312c756e695f786c6174653d312c6e6f6e756d7461696c3d302c646f733178666c6f7070792c726f6469722c756e695f786c6174653d312c71756965742c00c8702cc583177e7c953d2b6c6e43b73645f2acb80cc28520c3cd61e54370886d9caa3a1ec165ec59309153922716cb0f95f435e2af"], 0x1, 0x2f0, &(0x7f0000000f80)="$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") r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_REG(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x14, r4, 0x701, 0x70bd2c, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x8814) syz_genetlink_get_family_id$batadv(&(0x7f0000000080), r3) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xe, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="050000000000000071117500000000008510000002000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x6}, 0x94) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x44004) socket$nl_netfilter(0x10, 0x3, 0xc) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f00000000c0)=[{0x20, 0x0, 0x2, 0xfffff010}, {0x20, 0x0, 0x20, 0xfffff034}, {0x6}]}, 0x10) 2.537806569s ago: executing program 1 (id=1379): r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x6) 227.361808ms ago: executing program 4 (id=1380): bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="11000000040000000400000002"], 0x50) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo/3\x00') preadv(r0, &(0x7f00000005c0)=[{&(0x7f0000000280)=""/196, 0xc4}], 0x1, 0x8, 0xffffffff) 227.220038ms ago: executing program 2 (id=1381): r0 = gettid() timer_create(0x1, &(0x7f0000000800)={0x0, 0x21, 0x4, @tid=r0}, &(0x7f0000000000)) fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x3ed4, 0x5}) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x9) timer_settime(0x0, 0x1, &(0x7f0000000040), 0x0) accept4$vsock_stream(0xffffffffffffffff, 0x0, 0x0, 0x40000) 222.481238ms ago: executing program 0 (id=1382): syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x2a0471a, &(0x7f00000000c0)={[{@bh}]}, 0x82, 0x4a8, &(0x7f0000000300)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000700)='./file1\x00', 0x42041, 0x12c) pwrite64(r0, &(0x7f0000000140)='2', 0xfdef, 0xe7c) 210.331509ms ago: executing program 5 (id=1383): socket$nl_generic(0x10, 0x3, 0x10) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) close(r0) socket(0x1e, 0x2, 0x0) socket(0x28, 0x5, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="540000000206010200000000000000000500000005000100060000000d000300686173683a6e6574000000000900020073797a31000000000c00078008000640000000400500050002000000050004"], 0x54}}, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_ADD(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x10040047}, 0x240008c4) 124.109813ms ago: executing program 1 (id=1384): r0 = syz_open_dev$loop(&(0x7f0000000000), 0x8, 0x109000) ioctl$IOC_PR_CLEAR(r0, 0x401070cd, 0x0) 112.502374ms ago: executing program 4 (id=1394): r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0x2, 0x4e23, 0x0, @mcast1, 0x8000004}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r1, &(0x7f0000000680)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e230e227f000006925aa80020007b00090080007f000001e809000000ff0000f03ac7108ec50000ffffffffffffffffffe7ee00000000000000000200000000", 0x58}], 0x1) 66.202246ms ago: executing program 1 (id=1385): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'batadv0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000440)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="033f0000ff0000001c0012800c0001006d6163766c616e000c000280080007000800000008000500", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r1], 0x4c}}, 0x0) 0s ago: executing program 5 (id=1386): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, 0x0, 0x0) sendto$inet6(r1, &(0x7f0000000040), 0x0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r1, 0x84, 0x20, &(0x7f0000000080)=0x9b7f, 0x4) recvmmsg(r1, &(0x7f00000021c0)=[{{0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x4}], 0x1, 0x40000023, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="380000005400e50100", @ANYRES32, @ANYBLOB="010102007f"], 0x38}, 0x1, 0x0, 0x0, 0x400c884}, 0x4) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) chdir(0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x2400c808) prlimit64(0x0, 0xe, &(0x7f0000000000)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x40020000000002) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x2004d8b0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00'}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x40008c0) r3 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0) read$FUSE(r3, &(0x7f0000005180)={0x2020}, 0x2020) kernel console output (not intermixed with test programs): nfo (device loop0): using crc32c (crc32c-intel) checksum algorithm [ 166.919313][ T5629] BTRFS info (device loop0): setting nodatasum [ 166.938007][ T5629] BTRFS info (device loop0): force zlib compression, level 3 [ 166.979698][ T5629] BTRFS info (device loop0): setting incompat feature flag for COMPRESS_LZO (0x8) [ 167.031792][ T5629] BTRFS info (device loop0): use lzo compression, level 0 [ 167.060343][ T5640] loop2: detected capacity change from 0 to 64 [ 167.105296][ T5629] BTRFS info (device loop0): turning on flush-on-commit [ 167.161116][ T5629] BTRFS info (device loop0): enabling auto defrag [ 167.255127][ T5629] BTRFS info (device loop0): max_inline at 4096 [ 167.312785][ T5629] BTRFS info (device loop0): using free space tree [ 167.387642][ T5629] BTRFS info (device loop0): has skinny extents [ 168.061657][ T5669] loop4: detected capacity change from 0 to 16 [ 168.098630][ T5629] BTRFS info (device loop0): enabling ssd optimizations [ 168.121316][ T5669] erofs: (device loop4): mounted with root inode @ nid 36. [ 168.516632][ T5673] loop4: detected capacity change from 0 to 512 [ 168.961611][ T5673] EXT4-fs (loop4): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 169.055549][ T5673] ext4 filesystem being mounted at /66/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 169.083769][ T5683] tipc: Enabling of bearer rejected, already enabled [ 170.271790][ T5686] tipc: Enabling of bearer rejected, already enabled [ 170.732028][ T5696] loop0: detected capacity change from 0 to 1024 [ 170.800116][ T5696] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 170.827037][ T5700] loop2: detected capacity change from 0 to 512 [ 170.906249][ T5696] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_nolock,norecovery,min_batch_time=0x0000000000000001,nojournal_checksum,debug_want_extra_isize=0x0000000000000080,nodelalloc,errors=remount-ro,acl,auto_da_alloc=0x0000000000000343,jqfmt=vfsold,barrier=0x00000000000000. Quota mode: none. [ 170.938040][ T5698] loop1: detected capacity change from 0 to 4096 [ 171.011009][ T5700] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,nogrpid,quota,,errors=continue. Quota mode: writeback. [ 171.039032][ T5698] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 171.059556][ T5700] ext4 filesystem being mounted at /68/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 171.110318][ T5696] EXT4-fs error (device loop0): ext4_xattr_inode_iget:401: inode #11: comm syz.0.340: missing EA_INODE flag [ 171.208017][ T5696] EXT4-fs (loop0): Remounting filesystem read-only [ 171.251461][ T5696] EXT4-fs error (device loop0): ext4_xattr_inode_iget:406: comm syz.0.340: error while reading EA inode 11 err=-117 [ 171.311238][ T5696] EXT4-fs (loop0): Remounting filesystem read-only [ 171.905593][ T5705] loop4: detected capacity change from 0 to 32768 [ 171.961662][ T5705] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz.4.342 (5705) [ 172.071280][ T5705] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm [ 172.129164][ T5705] BTRFS info (device loop4): setting nodatacow, compression disabled [ 172.179079][ T5705] BTRFS info (device loop4): turning on flush-on-commit [ 172.225473][ T5705] BTRFS info (device loop4): trying to use backup root at mount time [ 172.313501][ T5705] BTRFS info (device loop4): max_inline at 0 [ 172.344697][ T5705] BTRFS info (device loop4): using free space tree [ 172.351272][ T5705] BTRFS info (device loop4): has skinny extents [ 172.492812][ T5719] loop0: detected capacity change from 0 to 32768 [ 172.538617][ T5719] JBD2: Ignoring recovery information on journal [ 172.677949][ T5719] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 172.972339][ T4184] ocfs2: Unmounting device (7,0) on (node local) [ 173.006740][ T1171] BTRFS warning (device loop4): checksum verify failed on 5337088 wanted 0xe63dbdda found 0xc926492d level 0 [ 173.078537][ T5705] BTRFS warning (device loop4): failed to read root (objectid=2): -5 [ 173.105390][ T4840] BTRFS warning (device loop4): checksum verify failed on 5324800 wanted 0x9f73850b found 0x80379423 level 0 [ 173.141042][ T5705] BTRFS warning (device loop4): couldn't read tree root [ 173.147783][ T5721] loop2: detected capacity change from 0 to 32768 [ 173.163263][ T5705] BTRFS error (device loop4): parent transid verify failed on 5255168 wanted 5 found 7 [ 173.188444][ T5705] BTRFS warning (device loop4): couldn't read tree root [ 173.243615][ T5705] BTRFS info (device loop4): enabling ssd optimizations [ 173.266069][ T5705] BTRFS info (device loop4): clearing free space tree [ 173.275395][ T5721] JBD2: Ignoring recovery information on journal [ 173.309782][ T5705] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 173.405827][ T5721] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 173.416647][ T5705] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 173.423428][ T5753] loop0: detected capacity change from 0 to 512 [ 173.564344][ T5705] BTRFS info (device loop4): creating free space tree [ 173.591806][ T5705] BTRFS info (device loop4): setting compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 173.604413][ T5705] BTRFS info (device loop4): setting compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 173.615020][ T5753] EXT4-fs (loop0): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 173.676009][ T5753] ext4 filesystem being mounted at /69/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 173.697615][ T4186] ocfs2: Unmounting device (7,2) on (node local) [ 173.807827][ T5705] BTRFS info (device loop4): scrub: started on devid 1 [ 173.948057][ T5753] tipc: Enabling of bearer rejected, already enabled [ 173.968209][ T5705] BTRFS info (device loop4): scrub: finished on devid 1 with status: 0 [ 174.081754][ T5762] loop2: detected capacity change from 0 to 512 [ 174.327836][ T5762] EXT4-fs (loop2): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 174.433427][ T5762] ext4 filesystem being mounted at /72/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 175.624491][ T5769] tipc: Enabling of bearer rejected, already enabled [ 176.348975][ T5787] loop4: detected capacity change from 0 to 256 [ 176.360808][ T5785] loop2: detected capacity change from 0 to 1024 [ 176.434948][ T5786] loop0: detected capacity change from 0 to 2048 [ 176.444109][ T5787] exfat: Deprecated parameter 'utf8' [ 176.449542][ T5787] exfat: Deprecated parameter 'namecase' [ 176.540297][ T5787] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36a12e94, utbl_chksum : 0xe619d30d) [ 176.749316][ T5786] UDF-fs: error (device loop0): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 176.850609][ T5786] UDF-fs: error (device loop0): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 176.956712][ T5786] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found [ 176.987894][ T5786] UDF-fs: Scanning with blocksize 512 failed [ 177.007664][ T5786] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 177.098763][ T26] audit: type=1800 audit(1776601180.540:17): pid=5786 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.358" name="file1" dev="loop0" ino=838 res=0 errno=0 [ 177.113859][ T5791] loop2: detected capacity change from 0 to 256 [ 177.158603][ T5791] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xbe66dc59, utbl_chksum : 0xe619d30d) [ 177.321929][ T26] audit: type=1800 audit(1776601180.760:18): pid=5791 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.362" name="file2" dev="loop2" ino=1048623 res=0 errno=0 [ 178.364124][ T5804] netlink: 32 bytes leftover after parsing attributes in process `syz.2.368'. [ 178.478070][ T5789] loop4: detected capacity change from 0 to 32768 [ 179.361210][ T5789] XFS (loop4): Mounting V5 Filesystem [ 179.475893][ T5789] XFS (loop4): Ending clean mount [ 179.585632][ T4194] XFS (loop4): Unmounting Filesystem [ 180.121048][ T5830] loop4: detected capacity change from 0 to 2048 [ 180.188607][ T5830] UDF-fs: bad mount option "uid=" or missing value [ 181.354457][ T5834] loop4: detected capacity change from 0 to 32768 [ 181.647754][ T5838] loop1: detected capacity change from 0 to 512 [ 181.716815][ T5834] JBD2: Ignoring recovery information on journal [ 181.759359][ T5838] EXT4-fs error (device loop1): ext4_orphan_get:1406: inode #15: comm syz.1.374: inode has both inline data and extents flags [ 181.774618][ T5838] EXT4-fs error (device loop1): ext4_orphan_get:1411: comm syz.1.374: couldn't read orphan inode 15 (err -117) [ 181.786928][ T5838] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 181.954975][ T5834] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 182.082062][ T5846] loop0: detected capacity change from 0 to 256 [ 182.084525][ T5847] cifs: Unknown parameter ' [ 182.084525][ T5847] @"2ach}#IT&:"1:ӭ'4,Zz-#L<]%gC [ 182.084525][ T5847] SȘ8)' [ 182.149667][ T4194] ocfs2: Unmounting device (7,4) on (node local) [ 182.206488][ T5846] exfat: Unknown parameter 'keep_last_dots' [ 182.334955][ T5853] loop1: detected capacity change from 0 to 512 [ 182.428946][ T5856] loop2: detected capacity change from 0 to 512 [ 182.661096][ T5853] EXT4-fs (loop1): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 182.744993][ T5853] ext4 filesystem being mounted at /71/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 182.826727][ T5856] EXT4-fs (loop2): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 184.581777][ T5856] ext4 filesystem being mounted at /78/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 184.674217][ T5871] tipc: Enabling of bearer rejected, already enabled [ 184.777196][ T5850] loop4: detected capacity change from 0 to 32768 [ 184.862255][ T5853] tipc: Enabling of bearer rejected, already enabled [ 185.011764][ T5850] JBD2: Ignoring recovery information on journal [ 185.064393][ T5875] netlink: 32 bytes leftover after parsing attributes in process `syz.0.383'. [ 185.700691][ T5850] JBD2: recovery failed [ 185.731138][ T5850] (syz.4.377,5850,0):ocfs2_journal_load:1105 ERROR: Failed to load journal! [ 185.777747][ T5850] (syz.4.377,5850,0):ocfs2_check_volume:2437 ERROR: ocfs2 journal load failed! -5 [ 185.852464][ T5850] (syz.4.377,5850,0):ocfs2_check_volume:2493 ERROR: status = -5 [ 185.896051][ T5850] (syz.4.377,5850,0):ocfs2_mount_volume:1824 ERROR: status = -5 [ 186.073447][ T5850] (syz.4.377,5850,1):ocfs2_fill_super:1177 ERROR: status = -5 [ 187.160277][ T5889] loop4: detected capacity change from 0 to 512 [ 187.451416][ T5889] EXT4-fs error (device loop4): ext4_orphan_get:1406: inode #15: comm syz.4.387: inode has both inline data and extents flags [ 187.466723][ T5889] EXT4-fs error (device loop4): ext4_orphan_get:1411: comm syz.4.387: couldn't read orphan inode 15 (err -117) [ 187.479648][ T5889] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 188.326101][ T5907] loop1: detected capacity change from 0 to 256 [ 188.365459][ T5907] exfat: Deprecated parameter 'utf8' [ 188.373511][ T5907] exfat: Unknown parameter 'keep_last_dots' [ 188.539672][ T5912] loop1: detected capacity change from 0 to 1024 [ 188.540830][ T5899] loop4: detected capacity change from 0 to 32768 [ 188.599560][ T5912] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 188.713818][ T5899] JBD2: Ignoring recovery information on journal [ 188.725368][ T5912] EXT4-fs (loop1): mounted filesystem without journal. Opts: dioread_nolock,norecovery,min_batch_time=0x0000000000000001,nojournal_checksum,debug_want_extra_isize=0x0000000000000080,nodelalloc,errors=remount-ro,acl,auto_da_alloc=0x0000000000000343,jqfmt=vfsold,barrier=0x00000000000000. Quota mode: none. [ 188.873224][ T5899] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 188.996446][ T4194] ocfs2: Unmounting device (7,4) on (node local) [ 189.072553][ T5921] loop1: detected capacity change from 0 to 512 [ 189.122466][ T5923] netlink: 32 bytes leftover after parsing attributes in process `syz.4.396'. [ 189.928743][ T5921] EXT4-fs (loop1): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 189.984165][ T5921] ext4 filesystem being mounted at /76/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 190.987346][ T5932] tipc: Enabling of bearer rejected, already enabled [ 191.275785][ T5937] loop4: detected capacity change from 0 to 512 [ 191.305573][ T1335] Bluetooth: hci0: command 0x0406 tx timeout [ 191.311868][ T1335] Bluetooth: hci1: command 0x0406 tx timeout [ 191.313657][ T21] Bluetooth: hci4: command 0x0406 tx timeout [ 191.431259][ T5937] EXT4-fs (loop4): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 191.457533][ T5937] ext4 filesystem being mounted at /78/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 191.493310][ T21] Bluetooth: hci2: command 0x0406 tx timeout [ 191.593435][ T21] Bluetooth: hci3: command 0x0406 tx timeout [ 191.648365][ T5945] tipc: Enabling of bearer rejected, already enabled [ 191.978718][ T5950] loop0: detected capacity change from 0 to 512 [ 192.671487][ T5950] EXT4-fs error (device loop0): ext4_orphan_get:1406: inode #15: comm syz.0.403: inode has both inline data and extents flags [ 192.687064][ T5950] EXT4-fs error (device loop0): ext4_orphan_get:1411: comm syz.0.403: couldn't read orphan inode 15 (err -117) [ 192.699989][ T5950] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 194.354084][ T1432] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.361959][ T1432] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.572015][ T5962] loop2: detected capacity change from 0 to 256 [ 194.715254][ T5965] netlink: 32 bytes leftover after parsing attributes in process `syz.0.407'. [ 195.606534][ T5974] loop2: detected capacity change from 0 to 64 [ 196.449515][ T5978] loop0: detected capacity change from 0 to 512 [ 196.699036][ T5978] EXT4-fs (loop0): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 196.723323][ T5978] ext4 filesystem being mounted at /80/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 196.869251][ T5986] tipc: Enabling of bearer rejected, already enabled [ 197.224032][ T5968] loop4: detected capacity change from 0 to 32768 [ 197.405433][ T5968] JBD2: Ignoring recovery information on journal [ 197.700901][ T5968] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 197.815909][ T4194] ocfs2: Unmounting device (7,4) on (node local) [ 197.931962][ T6000] loop0: detected capacity change from 0 to 512 [ 198.001043][ T5999] loop4: detected capacity change from 0 to 512 [ 198.058168][ T6000] EXT4-fs error (device loop0): ext4_orphan_get:1406: inode #15: comm syz.0.416: inode has both inline data and extents flags [ 198.072161][ T6000] EXT4-fs error (device loop0): ext4_orphan_get:1411: comm syz.0.416: couldn't read orphan inode 15 (err -117) [ 198.084833][ T6000] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 198.175332][ T5999] EXT4-fs (loop4): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 198.243791][ T5999] ext4 filesystem being mounted at /80/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 199.207033][ T6004] tipc: Enabling of bearer rejected, already enabled [ 200.789061][ T6013] loop4: detected capacity change from 0 to 2048 [ 200.845911][ T6013] UDF-fs: error (device loop4): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 200.987257][ T6013] UDF-fs: error (device loop4): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 201.028811][ T6013] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found [ 201.073654][ T6013] UDF-fs: Scanning with blocksize 512 failed [ 201.314828][ T6013] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 201.859413][ T6007] overlayfs: missing 'lowerdir' [ 201.945021][ T6023] loop0: detected capacity change from 0 to 8 [ 202.044290][ T6023] SQUASHFS error: zlib decompression failed, data probably corrupt [ 202.093588][ T6023] SQUASHFS error: Failed to read block 0x9b: -5 [ 202.100042][ T6023] SQUASHFS error: Unable to read metadata cache entry [99] [ 202.138562][ T6023] SQUASHFS error: Unable to read inode 0x127 [ 202.376762][ T6028] tipc: Enabling of bearer rejected, already enabled [ 203.741988][ T6043] loop2: detected capacity change from 0 to 512 [ 204.871754][ T6025] loop4: detected capacity change from 0 to 40427 [ 205.012953][ T6043] EXT4-fs error (device loop2): ext4_orphan_get:1406: inode #15: comm syz.2.429: inode has both inline data and extents flags [ 205.026806][ T6043] EXT4-fs error (device loop2): ext4_orphan_get:1411: comm syz.2.429: couldn't read orphan inode 15 (err -117) [ 205.038923][ T6043] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 206.706046][ T6060] loop4: detected capacity change from 0 to 512 [ 206.936848][ T6060] EXT4-fs (loop4): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 206.962020][ T6066] netlink: 32 bytes leftover after parsing attributes in process `syz.0.436'. [ 206.973451][ T6060] ext4 filesystem being mounted at /83/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 207.113429][ T6069] tipc: Enabling of bearer rejected, already enabled [ 207.210049][ T6068] overlayfs: failed to clone lowerpath [ 209.140798][ T6084] loop4: detected capacity change from 0 to 512 [ 209.310066][ T6084] EXT4-fs (loop4): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 209.332462][ T6087] loop0: detected capacity change from 0 to 64 [ 209.363832][ T6084] ext4 filesystem being mounted at /84/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 209.592523][ T6089] tipc: Enabling of bearer rejected, already enabled [ 212.520696][ T6111] netlink: 32 bytes leftover after parsing attributes in process `syz.1.449'. [ 212.544120][ T6110] loop2: detected capacity change from 0 to 64 [ 212.714085][ T6113] loop4: detected capacity change from 0 to 512 [ 213.316849][ T6118] loop1: detected capacity change from 0 to 64 [ 213.357084][ T6113] EXT4-fs (loop4): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 213.419839][ T6113] ext4 filesystem being mounted at /87/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 213.435603][ T6120] loop2: detected capacity change from 0 to 2048 [ 213.915044][ T6126] tipc: Enabling of bearer rejected, already enabled [ 213.970162][ T6120] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 214.090788][ T26] audit: type=1800 audit(1776601217.530:19): pid=6120 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.451" name="file1" dev="loop2" ino=1367 res=0 errno=0 [ 214.896526][ T6133] loop2: detected capacity change from 0 to 512 [ 215.112979][ T6133] EXT4-fs (loop2): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 215.193556][ T6133] ext4 filesystem being mounted at /89/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 216.217552][ T6140] tipc: Enabling of bearer rejected, already enabled [ 216.667717][ T6131] loop1: detected capacity change from 0 to 32768 [ 216.908779][ T6131] XFS (loop1): Mounting V5 Filesystem [ 217.110830][ T6131] XFS (loop1): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51. [ 217.178997][ T6131] XFS (loop1): Starting recovery (logdev: internal) [ 217.303253][ T6131] XFS (loop1): Ending recovery (logdev: internal) [ 217.650063][ T4187] XFS (loop1): Unmounting Filesystem [ 218.227310][ T6165] netlink: 32 bytes leftover after parsing attributes in process `syz.1.462'. [ 219.918674][ T6175] loop2: detected capacity change from 0 to 512 [ 220.000104][ T6175] EXT4-fs (loop2): Ignoring removed nobh option [ 220.028195][ T6175] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 220.076168][ T6175] EXT4-fs (loop2): 1 truncate cleaned up [ 220.093378][ T6175] EXT4-fs (loop2): mounted filesystem without journal. Opts: errors=remount-ro,nobh,debug_want_extra_isize=0x0000000000000068,mb_optimize_scan=0x0000000000000001,max_batch_time=0x0000000000000007,dioread_lock,. Quota mode: none. [ 220.127962][ T6173] loop4: detected capacity change from 0 to 40427 [ 220.242865][ T6187] tipc: Enabling of bearer rejected, already enabled [ 220.265780][ T6186] loop0: detected capacity change from 0 to 512 [ 220.313147][ T6173] F2FS-fs (loop4): Invalid Fs Meta Ino: node(0) meta(2) root(0) [ 220.336601][ T6173] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 220.353105][ T6173] F2FS-fs (loop4): invalid crc value [ 220.561632][ T6173] F2FS-fs (loop4): Found nat_bits in checkpoint [ 220.956616][ T6173] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 221.072676][ T6173] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4 [ 221.340807][ T6186] EXT4-fs (loop0): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 221.373470][ T6186] ext4 filesystem being mounted at /93/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 221.421950][ T6193] attempt to access beyond end of device [ 221.421950][ T6193] loop4: rw=2049, want=45104, limit=40427 [ 221.615967][ T6206] tipc: Enabling of bearer rejected, already enabled [ 222.392388][ T6205] loop2: detected capacity change from 0 to 32768 [ 222.506980][ T6205] JBD2: Ignoring recovery information on journal [ 222.574512][ T6216] netlink: 32 bytes leftover after parsing attributes in process `syz.4.474'. [ 222.735156][ T6205] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 223.572427][ T4186] ocfs2: Unmounting device (7,2) on (node local) [ 224.658977][ T6232] loop4: detected capacity change from 0 to 512 [ 224.822440][ T6232] EXT4-fs error (device loop4): ext4_orphan_get:1406: inode #15: comm syz.4.480: inode has both inline data and extents flags [ 224.969925][ T6232] EXT4-fs error (device loop4): ext4_orphan_get:1411: comm syz.4.480: couldn't read orphan inode 15 (err -117) [ 225.053859][ T6237] loop2: detected capacity change from 0 to 1024 [ 225.077244][ T6232] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 225.188279][ T6230] loop1: detected capacity change from 0 to 32768 [ 225.281535][ T6241] loop0: detected capacity change from 0 to 64 [ 225.370614][ T6237] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 225.420055][ T6230] JBD2: Ignoring recovery information on journal [ 225.645686][ T6230] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 225.871329][ T6252] netlink: 32 bytes leftover after parsing attributes in process `syz.3.487'. [ 225.916083][ T4187] ocfs2: Unmounting device (7,1) on (node local) [ 227.656715][ T6263] loop1: detected capacity change from 0 to 32768 [ 229.297141][ T6279] tipc: Enabling of bearer rejected, already enabled [ 230.823391][ T6283] loop2: detected capacity change from 0 to 256 [ 230.850656][ T6285] loop0: detected capacity change from 0 to 128 [ 230.875497][ T6283] exfat: Deprecated parameter 'utf8' [ 230.897527][ T6285] EXT4-fs (loop0): Test dummy encryption mode enabled [ 230.918989][ T6283] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe3908169, utbl_chksum : 0xe619d30d) [ 231.016323][ T6285] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a806c018, mo2=0042] [ 231.063629][ T6285] System zones: 1-3, 19-19, 35-36 [ 231.108954][ T6285] EXT4-fs (loop0): mounted filesystem without journal. Opts: debug,nolazytime,dax=inode,jqfmt=vfsv0,dioread_lock,usrjquota=.,test_dummy_encryption,,errors=continue. Quota mode: writeback. [ 231.215333][ T6285] ext4 filesystem being mounted at /99/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 231.343639][ T6292] EXT4-fs (loop0): re-mounted. Opts: . Quota mode: writeback. [ 231.517040][ T6296] loop1: detected capacity change from 0 to 512 [ 231.553404][ T6285] fscrypt: AES-256-XTS using implementation "xts-aes-aesni" [ 231.637142][ T6296] EXT4-fs (loop1): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 231.672663][ T6296] ext4 filesystem being mounted at /97/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 231.815497][ T6305] tipc: Enabling of bearer rejected, already enabled [ 232.707069][ T6313] loop1: detected capacity change from 0 to 2048 [ 232.857624][ T6313] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 232.893366][ T6313] NILFS (loop1): mounting unchecked fs [ 232.913129][ T4351] udevd[4351]: incorrect nilfs2 checksum on /dev/loop1 [ 232.920762][ T6313] NILFS (loop1): recovery complete [ 232.944078][ T6316] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 232.982886][ T6315] loop0: detected capacity change from 0 to 4096 [ 233.027215][ T26] audit: type=1800 audit(1776601236.470:20): pid=6313 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.504" name="file1" dev="loop1" ino=12 res=0 errno=0 [ 233.093730][ T6315] NILFS (loop0): unrecognized mount option "=PY3ʫKĒi [ 233.093730][ T6315] |scӃQ%>Pr" [ 233.454351][ T6321] loop1: detected capacity change from 0 to 4096 [ 233.488310][ T6321] ntfs3: Unknown parameter 'windows_names' [ 233.525021][ T6311] loop2: detected capacity change from 0 to 32768 [ 234.293046][ T6323] loop0: detected capacity change from 0 to 32768 [ 234.357488][ T6323] JBD2: Ignoring recovery information on journal [ 234.461520][ T6321] loop1: detected capacity change from 0 to 32768 [ 234.521563][ T6323] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 234.887999][ T4184] ocfs2: Unmounting device (7,0) on (node local) [ 235.232863][ T6342] loop1: detected capacity change from 0 to 64 [ 235.441312][ T6328] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz.4.510 (6328) [ 235.543877][ T6328] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm [ 235.578709][ T6328] BTRFS info (device loop4): using free space tree [ 235.600071][ T6328] BTRFS info (device loop4): has skinny extents [ 235.879439][ T6328] BTRFS info (device loop4): enabling ssd optimizations [ 236.259179][ T6340] set_capacity_and_notify: 1 callbacks suppressed [ 236.259196][ T6340] loop2: detected capacity change from 0 to 32768 [ 236.366032][ T6340] JBD2: Ignoring recovery information on journal [ 236.409752][ T6338] loop0: detected capacity change from 0 to 32768 [ 236.526699][ T6340] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 236.611562][ T26] audit: type=1326 audit(1776601240.050:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6378 comm="syz.3.521" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa709327819 code=0x0 [ 236.742308][ T4186] ocfs2: Unmounting device (7,2) on (node local) [ 236.826371][ T6369] loop1: detected capacity change from 0 to 32768 [ 237.046040][ T6338] XFS (loop0): Mounting V5 Filesystem [ 237.106184][ T6369] XFS (loop1): Mounting V5 Filesystem [ 237.236311][ T6338] XFS (loop0): Ending clean mount [ 237.253992][ T6369] XFS (loop1): Ending clean mount [ 237.285568][ T6406] capability: warning: `syz.4.522' uses 32-bit capabilities (legacy support in use) [ 237.354609][ T6406] program syz.4.522 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 237.387238][ T6410] netlink: 16 bytes leftover after parsing attributes in process `syz.3.527'. [ 237.587372][ T4187] XFS (loop1): Unmounting Filesystem [ 237.754691][ T4184] XFS (loop0): Unmounting Filesystem [ 238.738117][ T6424] device bridge0 entered promiscuous mode [ 238.756344][ T6424] bridge0: port 3(macvlan2) entered blocking state [ 238.768115][ T6424] bridge0: port 3(macvlan2) entered disabled state [ 238.816070][ T6424] device bridge0 left promiscuous mode [ 239.410377][ T6428] loop4: detected capacity change from 0 to 32768 [ 239.490527][ T6428] JBD2: Ignoring recovery information on journal [ 239.491411][ T6432] loop0: detected capacity change from 0 to 32768 [ 239.566052][ T6447] loop2: detected capacity change from 0 to 2048 [ 239.602067][ T6428] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 239.871858][ T6447] EXT4-fs (loop2): mounted filesystem without journal. Opts: i_version,init_itable,noblock_validity,,errors=continue. Quota mode: none. [ 239.906181][ T6447] ext4 filesystem being mounted at /110/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 239.918021][ T4194] ocfs2: Unmounting device (7,4) on (node local) [ 240.166588][ T6460] tipc: Enabling of bearer rejected, already enabled [ 240.374661][ T6450] loop1: detected capacity change from 0 to 32768 [ 240.840417][ T6450] XFS (loop1): Mounting V5 Filesystem [ 241.120085][ T6450] XFS (loop1): Ending clean mount [ 241.239440][ T6450] XFS (loop1): User initiated shutdown received. [ 241.262544][ T6450] XFS (loop1): Log I/O Error (0x6) detected at xfs_fs_goingdown+0x6d/0x150 (fs/xfs/xfs_fsops.c:495). Shutting down filesystem. [ 241.323293][ T6450] XFS (loop1): Please unmount the filesystem and rectify the problem(s) [ 241.396554][ T4187] XFS (loop1): Unmounting Filesystem [ 242.046293][ T6489] netlink: 8 bytes leftover after parsing attributes in process `syz.2.552'. [ 242.765795][ T6511] tipc: Enabling of bearer rejected, already enabled [ 242.864872][ T6517] loop1: detected capacity change from 0 to 764 [ 243.003600][ T6522] loop0: detected capacity change from 0 to 512 [ 243.090603][ T6524] loop2: detected capacity change from 0 to 512 [ 243.097348][ T6522] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 243.130611][ T6522] EXT4-fs (loop0): 1 truncate cleaned up [ 243.136935][ T6522] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 243.197402][ T6524] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 243.721987][ T6524] EXT4-fs error (device loop2): ext4_init_orphan_info:621: comm syz.2.567: orphan file block 0: bad magic [ 243.816389][ T6524] EXT4-fs (loop2): mount failed [ 243.823552][ T6535] netlink: 8 bytes leftover after parsing attributes in process `syz.4.570'. [ 243.873651][ T6535] netlink: 'syz.4.570': attribute type 3 has an invalid length. [ 243.941451][ T6535] Zero length message leads to an empty skb [ 244.038511][ T6542] loop4: detected capacity change from 0 to 764 [ 246.274469][ T6581] netlink: 4 bytes leftover after parsing attributes in process `syz.1.588'. [ 246.323478][ T6581] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 246.508310][ T6581] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 246.560083][ T6587] netlink: 224 bytes leftover after parsing attributes in process `syz.2.592'. [ 246.698002][ T6591] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 247.560061][ T6615] loop1: detected capacity change from 0 to 1024 [ 247.645718][ T6615] EXT4-fs (loop1): Ignoring removed bh option [ 247.703755][ T6615] EXT4-fs (loop1): orphan cleanup on readonly fs [ 247.710162][ T6615] EXT4-fs error (device loop1): ext4_quota_enable:6440: comm syz.1.604: Bad quota inum: 4294934528, type: 0 [ 247.864472][ T6615] EXT4-fs (loop1): Remounting filesystem read-only [ 247.872468][ T6615] EXT4-fs warning (device loop1): ext4_enable_quotas:6488: Failed to enable quota tracking (type=0, err=-117, ino=4294934528). Please run e2fsck to fix. [ 247.891361][ T6615] EXT4-fs (loop1): Cannot turn on quotas: error -117 [ 247.938058][ T6615] EXT4-fs (loop1): mounted filesystem without journal. Opts: noblock_validity,auto_da_alloc,bh,block_validity,abort,errors=remount-ro,. Quota mode: writeback. [ 248.016845][ T6615] netlink: 12 bytes leftover after parsing attributes in process `syz.1.604'. [ 248.033277][ T6622] xt_hashlimit: size too large, truncated to 1048576 [ 248.052547][ T6625] netlink: 276 bytes leftover after parsing attributes in process `syz.2.608'. [ 248.089637][ T6625] netlink: 276 bytes leftover after parsing attributes in process `syz.2.608'. [ 248.136135][ T6625] loop2: detected capacity change from 0 to 512 [ 248.193797][ T6626] bridge0: port 1(bridge_slave_0) entered disabled state [ 248.288777][ T6625] EXT4-fs (loop2): Ignoring removed nobh option [ 248.304681][ T6625] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 248.351099][ T6626] device bridge_slave_0 left promiscuous mode [ 248.403195][ T6626] bridge0: port 1(bridge_slave_0) entered disabled state [ 248.414389][ T6625] EXT4-fs (loop2): 1 truncate cleaned up [ 248.434857][ T6625] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpjquota=,nobh,debug_want_extra_isize=0x0000000000000068,mb_optimize_scan=0x0000000000000001,max_batch_time=0x0000000000000007,dioread_lock,,errors=continue. Quota mode: none. [ 248.660937][ T6635] loop1: detected capacity change from 0 to 2048 [ 248.721776][ T6635] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 248.768750][ T6635] EXT4-fs (loop1): shut down requested (0) [ 250.613670][ T6655] netlink: 40 bytes leftover after parsing attributes in process `syz.2.618'. [ 252.806271][ T6676] loop1: detected capacity change from 0 to 512 [ 253.183577][ T6676] EXT4-fs (loop1): Ignoring removed nobh option [ 253.508307][ T6676] EXT4-fs error (device loop1): ext4_iget_extra_inode:4573: inode #15: comm syz.1.624: corrupted in-inode xattr [ 253.610005][ T6676] EXT4-fs error (device loop1): ext4_orphan_get:1411: comm syz.1.624: couldn't read orphan inode 15 (err -117) [ 253.640838][ T6676] EXT4-fs (loop1): mounted filesystem without journal. Opts: nobh,delalloc,debug_want_extra_isize=0x000000000000005a,usrjquota=,nouid32,acl,init_itable=0x0000000000008d55,,errors=continue. Quota mode: none. [ 253.880363][ T6692] loop2: detected capacity change from 0 to 512 [ 253.994318][ T6692] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,barrier,quota,,errors=continue. Quota mode: writeback. [ 254.143376][ T6692] ext4 filesystem being mounted at /136/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 254.300214][ T6699] device netdevsim0 entered promiscuous mode [ 255.627635][ T6713] program syz.0.636 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 255.805029][ T1432] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.813974][ T1432] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.383926][ T6716] loop0: detected capacity change from 0 to 2048 [ 256.467434][ T6716] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,,errors=continue. Quota mode: none. [ 256.488316][ T6697] loop1: detected capacity change from 0 to 32768 [ 256.518391][ T6718] loop2: detected capacity change from 0 to 512 [ 256.704805][ T6697] JBD2: Ignoring recovery information on journal [ 256.921360][ T6697] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 257.100000][ T4187] ocfs2: Unmounting device (7,1) on (node local) [ 259.237824][ T6750] netlink: 168 bytes leftover after parsing attributes in process `syz.4.648'. [ 261.251462][ T6798] device syzkaller0 entered promiscuous mode [ 262.588569][ T6808] loop2: detected capacity change from 0 to 512 [ 262.668710][ T6808] EXT4-fs (loop2): inline encryption not supported [ 262.697414][ T6815] loop4: detected capacity change from 0 to 512 [ 263.115503][ T6808] EXT4-fs error (device loop2): ext4_orphan_get:1432: comm syz.2.669: bad orphan inode 15 [ 263.189359][ T6815] EXT4-fs error (device loop4): ext4_orphan_get:1406: inode #15: comm syz.4.673: inode has both inline data and extents flags [ 263.353600][ T6808] ext4_test_bit(bit=14, block=5) = 0 [ 263.564839][ T6808] EXT4-fs (loop2): mounted filesystem without journal. Opts: noblock_validity,stripe=0x0000000000000001,inlinecrypt,grpid,journal_ioprio=0x0000000000000002,journal_ioprio=0x0000000000000003,nolazytime,noload,,errors=continue. Quota mode: none. [ 263.598270][ T6815] EXT4-fs (loop4): Remounting filesystem read-only [ 263.633634][ T6815] EXT4-fs error (device loop4): ext4_orphan_get:1411: comm syz.4.673: couldn't read orphan inode 15 (err -117) [ 263.658120][ T6808] EXT4-fs error (device loop2): ext4_search_dir:1549: inode #11: block 14: comm syz.2.669: bad entry in directory: rec_len % 4 != 0 - offset=12, inode=2, rec_len=255, size=1024 fake=1 [ 263.677118][ T6822] loop0: detected capacity change from 0 to 2048 [ 263.687205][ T6815] EXT4-fs (loop4): Remounting filesystem read-only [ 263.709530][ T6824] program syz.3.676 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 263.741133][ T6815] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,. Quota mode: writeback. [ 263.927476][ T6822] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 265.052620][ T6843] loop4: detected capacity change from 0 to 1024 [ 265.160682][ T6845] loop0: detected capacity change from 0 to 512 [ 265.225426][ T6843] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 265.301845][ T26] audit: type=1800 audit(1776601268.740:22): pid=6843 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.682" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 265.359699][ T6845] EXT4-fs error (device loop0): ext4_orphan_get:1406: inode #15: comm syz.0.680: inode has both inline data and extents flags [ 265.435730][ T6845] EXT4-fs error (device loop0): ext4_orphan_get:1411: comm syz.0.680: couldn't read orphan inode 15 (err -117) [ 265.518708][ T6845] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 265.621946][ T6830] loop2: detected capacity change from 0 to 32768 [ 265.719075][ T6851] netlink: 32 bytes leftover after parsing attributes in process `syz.1.684'. [ 265.780105][ T6830] JBD2: Ignoring recovery information on journal [ 265.971955][ T6830] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 266.182583][ T4186] ocfs2: Unmounting device (7,2) on (node local) [ 266.238013][ T6865] loop4: detected capacity change from 0 to 1024 [ 266.529064][ T6865] EXT4-fs (loop4): mounted filesystem without journal. Opts: barrier,min_batch_time=0x0000000000000005,noquota,lazytime,nombcache,nodioread_nolock,,errors=continue. Quota mode: none. [ 266.592825][ T6865] ext4 filesystem being mounted at /117/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 266.734276][ T6865] EXT4-fs error (device loop4): ext4_map_blocks:741: inode #15: block 3: comm syz.4.690: lblock 3 mapped to illegal pblock 3 (length 3) [ 266.787192][ T6865] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117 [ 266.813281][ T6819] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 112: padding at end of block bitmap is not set [ 266.830166][ T6865] EXT4-fs (loop4): This should not happen!! Data will be lost [ 266.830166][ T6865] [ 266.897585][ T6873] EXT4-fs error (device loop4): ext4_map_blocks:631: inode #15: block 3: comm syz.4.690: lblock 3 mapped to illegal pblock 3 (length 1) [ 267.058549][ T26] audit: type=1800 audit(1776601270.500:23): pid=6873 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.690" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 267.221482][ T5414] EXT4-fs error (device loop4): ext4_map_blocks:741: inode #15: block 8: comm kworker/u4:14: lblock 8 mapped to illegal pblock 8 (length 8) [ 267.257535][ T5414] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117 [ 267.295716][ T5414] EXT4-fs (loop4): This should not happen!! Data will be lost [ 267.295716][ T5414] [ 267.367040][ T6885] xt_hashlimit: size too large, truncated to 1048576 [ 267.455988][ T6885] xt_NFQUEUE: number of queues (65529) out of range (got 65536) [ 269.107691][ T6902] loop4: detected capacity change from 0 to 512 [ 269.343023][ T6902] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 269.397831][ T6902] ext4 filesystem being mounted at /119/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 269.547011][ T6902] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1176: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 271.050139][ T6920] loop4: detected capacity change from 0 to 4096 [ 271.983435][ T6920] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 272.846854][ T6925] loop2: detected capacity change from 0 to 8192 [ 274.168339][ T6949] loop4: detected capacity change from 0 to 512 [ 274.279652][ T6949] EXT4-fs (loop4): Ignoring removed bh option [ 274.361382][ T6949] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 274.483618][ T6949] EXT4-fs error (device loop4): ext4_iget_extra_inode:4573: inode #15: comm syz.4.715: corrupted in-inode xattr [ 274.603681][ T6949] EXT4-fs error (device loop4): ext4_orphan_get:1411: comm syz.4.715: couldn't read orphan inode 15 (err -117) [ 274.668746][ T6949] EXT4-fs (loop4): mounted filesystem without journal. Opts: auto_da_alloc=0x0000000000000002,grpid,bh,grpid,noauto_da_alloc,max_dir_size_kb=0x0000000000000005,init_itable=0x0000000000000009,errors=continue,usrjquota=,nolazytime,norecovery,,errors=continue. Quota mode: none. [ 274.834473][ T6949] EXT4-fs warning (device loop4): dx_probe:833: inode #2: comm syz.4.715: Unrecognised inode hash code 4 [ 274.914004][ T6949] EXT4-fs warning (device loop4): dx_probe:966: inode #2: comm syz.4.715: Corrupt directory, running e2fsck is recommended [ 274.964132][ T6949] EXT4-fs warning (device loop4): dx_probe:833: inode #2: comm syz.4.715: Unrecognised inode hash code 4 [ 275.000570][ T6949] EXT4-fs warning (device loop4): dx_probe:966: inode #2: comm syz.4.715: Corrupt directory, running e2fsck is recommended [ 275.073462][ T6949] EXT4-fs warning (device loop4): dx_probe:833: inode #2: comm syz.4.715: Unrecognised inode hash code 4 [ 275.123271][ T6949] EXT4-fs warning (device loop4): dx_probe:966: inode #2: comm syz.4.715: Corrupt directory, running e2fsck is recommended [ 275.151317][ T6949] EXT4-fs warning (device loop4): dx_probe:833: inode #2: comm syz.4.715: Unrecognised inode hash code 4 [ 275.188590][ T6949] EXT4-fs warning (device loop4): dx_probe:966: inode #2: comm syz.4.715: Corrupt directory, running e2fsck is recommended [ 275.221352][ T6947] loop2: detected capacity change from 0 to 32768 [ 275.330328][ T6947] JBD2: Ignoring recovery information on journal [ 275.450365][ T6947] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 275.662419][ T4186] ocfs2: Unmounting device (7,2) on (node local) [ 275.765602][ T6967] loop4: detected capacity change from 0 to 512 [ 275.844053][ T6967] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 275.920936][ T6967] EXT4-fs (loop4): orphan cleanup on readonly fs [ 275.932182][ T6959] bridge0: port 2(bridge_slave_1) entered disabled state [ 275.939732][ T6959] bridge0: port 1(bridge_slave_0) entered disabled state [ 276.020107][ T6967] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:3894: comm syz.4.721: Allocating blocks 41-42 which overlap fs metadata [ 276.054526][ T6967] Quota error (device loop4): write_blk: dquota write failed [ 276.062121][ T6967] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 276.183333][ T6967] EXT4-fs error (device loop4): ext4_acquire_dquot:6236: comm syz.4.721: Failed to acquire dquot type 0 [ 276.226184][ T6967] EXT4-fs error (device loop4): mb_free_blocks:1889: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt. [ 276.289842][ T6967] EXT4-fs error (device loop4): ext4_do_update_inode:5229: inode #12: comm syz.4.721: corrupted inode contents [ 276.342408][ T6967] EXT4-fs error (device loop4): ext4_dirty_inode:6077: inode #12: comm syz.4.721: mark_inode_dirty error [ 276.780155][ T6967] EXT4-fs error (device loop4): ext4_do_update_inode:5229: inode #12: comm syz.4.721: corrupted inode contents [ 277.092444][ T6967] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #12: comm syz.4.721: mark_inode_dirty error [ 277.176486][ T6967] EXT4-fs error (device loop4): ext4_do_update_inode:5229: inode #12: comm syz.4.721: corrupted inode contents [ 277.216019][ T6967] EXT4-fs error (device loop4) in ext4_orphan_del:303: Corrupt filesystem [ 277.233249][ T6967] EXT4-fs error (device loop4): ext4_do_update_inode:5229: inode #12: comm syz.4.721: corrupted inode contents [ 277.298707][ T6967] EXT4-fs error (device loop4): ext4_truncate:4286: inode #12: comm syz.4.721: mark_inode_dirty error [ 277.319980][ T6967] EXT4-fs error (device loop4) in ext4_process_orphan:345: Corrupt filesystem [ 277.330163][ T6967] EXT4-fs (loop4): 1 truncate cleaned up [ 277.342510][ T6967] EXT4-fs (loop4): pa ffff888074ba8700: logic 1, phys. 41, len 23 [ 277.351345][ T6967] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:4904: group 0, free 22, pa_free 23 [ 277.390346][ T6967] EXT4-fs (loop4): mounted filesystem without journal. Opts: nodelalloc,noblock_validity,nolazytime,auto_da_alloc=0x0000000000000005,minixdf,resgid=0x000000000000ee01,noinit_itable,noinit_itable,journal_dev=0x0000000000000afb2,errors=continue. Quota mode: writeback. [ 278.417370][ T6990] loop4: detected capacity change from 0 to 512 [ 278.430530][ T6992] loop1: detected capacity change from 0 to 512 [ 278.478330][ T5926] Bluetooth: hci5: Frame reassembly failed (-84) [ 278.509268][ T6992] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 278.574907][ T6992] EXT4-fs (loop1): 1 truncate cleaned up [ 278.598107][ T6992] EXT4-fs (loop1): mounted filesystem without journal. Opts: noload,stripe=0x00000000000000dc,data_err=abort,noload,data_err=ignore,auto_da_alloc,,errors=continue. Quota mode: none. [ 278.917018][ T7002] loop2: detected capacity change from 0 to 512 [ 278.957251][ T6959] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 279.013897][ T7002] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 279.067238][ T6959] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 279.848849][ T6959] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 279.867000][ T6959] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 279.882640][ T6959] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 279.893047][ T6959] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 280.173066][ T7009] netlink: 12 bytes leftover after parsing attributes in process `syz.2.733'. [ 280.503334][ T4232] Bluetooth: hci0: command 0x080f tx timeout [ 280.514510][ T4232] Bluetooth: hci5: command 0x1003 tx timeout [ 280.615670][ T4195] Bluetooth: hci5: sending frame failed (-49) [ 281.843448][ T7034] loop2: detected capacity change from 0 to 7 [ 281.866529][ T4351] Dev loop2: unable to read RDB block 7 [ 281.872425][ T4351] loop2: unable to read partition table [ 281.885597][ T4351] loop2: partition table beyond EOD, truncated [ 281.926356][ T7034] Dev loop2: unable to read RDB block 7 [ 282.003530][ T7037] loop1: detected capacity change from 0 to 512 [ 282.029185][ T7034] loop2: unable to read partition table [ 282.052153][ T7034] loop2: partition table beyond EOD, truncated [ 282.098607][ T7034] loop_reread_partitions: partition scan of loop2 (被x ) failed (rc=-5) [ 282.229631][ T7037] EXT4-fs error (device loop1): ext4_orphan_get:1406: inode #15: comm syz.1.736: inode has both inline data and extents flags [ 282.243346][ T7037] EXT4-fs error (device loop1): ext4_orphan_get:1411: comm syz.1.736: couldn't read orphan inode 15 (err -117) [ 282.255772][ T7037] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 282.637725][ T7041] device syzkaller0 entered promiscuous mode [ 282.663364][ T4173] Bluetooth: hci5: command 0x1001 tx timeout [ 282.674217][ T4195] Bluetooth: hci5: sending frame failed (-49) [ 283.866502][ T7000] ODEBUG: Out of memory. ODEBUG disabled [ 284.743714][ T4173] Bluetooth: hci5: command 0x1009 tx timeout [ 285.003196][ T7000] Set syz1 is full, maxelem 65536 reached [ 285.208382][ T7079] loop1: detected capacity change from 0 to 512 [ 285.292759][ T7079] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpid,grpquota,,errors=continue. Quota mode: writeback. [ 285.321321][ T7079] ext4 filesystem being mounted at /154/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 285.374243][ T7086] loop2: detected capacity change from 0 to 512 [ 285.404567][ T7086] EXT4-fs (loop2): 1 truncate cleaned up [ 285.410291][ T7086] EXT4-fs (loop2): mounted filesystem without journal. Opts: bsddf,,errors=continue. Quota mode: none. [ 285.439165][ T26] audit: type=1800 audit(1776601288.880:24): pid=7086 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.760" name="file1" dev="loop2" ino=13 res=0 errno=0 [ 285.619971][ T7091] loop2: detected capacity change from 0 to 512 [ 285.715040][ T7091] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 285.761657][ T7091] EXT4-fs (loop2): 1 truncate cleaned up [ 285.776223][ T7091] EXT4-fs (loop2): mounted filesystem without journal. Opts: noload,stripe=0x00000000000000dc,data_err=abort,noload,data_err=ignore,auto_da_alloc,,errors=continue. Quota mode: none. [ 285.812463][ T26] audit: type=1800 audit(1776601289.250:25): pid=7091 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.761" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 285.851708][ T7106] netlink: 24 bytes leftover after parsing attributes in process `syz.3.769'. [ 286.180031][ T7118] loop2: detected capacity change from 0 to 512 [ 286.198889][ T7121] netlink: 'syz.1.776': attribute type 21 has an invalid length. [ 286.249831][ T7118] EXT4-fs (loop2): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 286.315233][ T7118] ext4 filesystem being mounted at /172/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 286.481063][ T7132] tipc: Enabling of bearer rejected, already enabled [ 287.431554][ T7148] loop4: detected capacity change from 0 to 1024 [ 287.462691][ T7148] EXT4-fs (loop4): Ignoring removed orlov option [ 287.582960][ T7148] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a002c018, mo2=0002] [ 287.597584][ T7148] System zones: 0-1, 3-12 [ 287.604508][ T7148] EXT4-fs (loop4): mounted filesystem without journal. Opts: journal_dev=0x0000000000000007,debug,nodioread_nolock,min_batch_time=0x0000000000000006,debug_want_extra_isize=0x0000000000000080,orlov,nodelalloc,jqfmt=vfsv1,auto_da_alloc=0x0000000001800000,,errors=continue. Quota mode: none. [ 287.785223][ T4173] kernel write not supported for file /uhid (pid: 4173 comm: kworker/1:3) [ 287.880379][ T7162] syz.1.790 uses obsolete (PF_INET,SOCK_PACKET) [ 288.023693][ T7165] loop1: detected capacity change from 0 to 8192 [ 288.244781][ T7170] loop1: detected capacity change from 0 to 512 [ 288.743736][ T7170] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 288.815656][ T7170] ext4 filesystem being mounted at /166/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 288.871153][ T7182] loop2: detected capacity change from 0 to 512 [ 289.083374][ T7182] EXT4-fs (loop2): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 289.147565][ T7182] ext4 filesystem being mounted at /175/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 289.454560][ T7210] program syz.4.808 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 289.488610][ T7212] tipc: Enabling of bearer rejected, already enabled [ 290.618644][ T7217] loop1: detected capacity change from 0 to 1024 [ 290.785907][ T7217] EXT4-fs (loop1): inline encryption not supported [ 290.933796][ T7217] EXT4-fs (loop1): mounted filesystem without journal. Opts: block_validity,bsddf,bsdgroups,norecovery,inlinecrypt,noinit_itable,usrquota,noauto_da_alloc,norecovery,,errors=continue. Quota mode: writeback. [ 290.936918][ T7224] loop0: detected capacity change from 0 to 128 [ 291.309020][ T7241] loop0: detected capacity change from 0 to 512 [ 291.549184][ T7241] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 291.580222][ T7241] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e02c, mo2=0002] [ 292.618738][ T7241] EXT4-fs (loop0): orphan cleanup on readonly fs [ 292.670570][ T7241] EXT4-fs error (device loop0): ext4_orphan_get:1432: comm syz.0.819: bad orphan inode 3 [ 292.784171][ T7241] EXT4-fs (loop0): Remounting filesystem read-only [ 292.811288][ T7241] EXT4-fs (loop0): mounted filesystem without journal. Opts: nojournal_checksum,noblock_validity,discard,errors=remount-ro,data=writeback. Quota mode: none. [ 292.979457][ T7241] EXT4-fs warning (device loop0): dx_probe:893: inode #2: comm syz.0.819: dx entry: limit 0 != root limit 125 [ 293.013020][ T7241] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.819: Corrupt directory, running e2fsck is recommended [ 293.034102][ T7262] program syz.1.827 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 293.158899][ T7264] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 293.223517][ T7266] loop1: detected capacity change from 0 to 512 [ 293.362184][ T7266] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,nogrpid,quota,,errors=continue. Quota mode: writeback. [ 293.382536][ T7277] loop0: detected capacity change from 0 to 164 [ 293.415458][ T7266] ext4 filesystem being mounted at /175/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 294.073890][ T7295] loop1: detected capacity change from 0 to 256 [ 294.088025][ T7291] ptrace attach of "./syz-executor exec"[7292] was attempted by "./syz-executor exec"[7291] [ 294.526176][ T7305] loop4: detected capacity change from 0 to 512 [ 294.775653][ T7305] EXT4-fs (loop4): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 294.803568][ T7305] ext4 filesystem being mounted at /147/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 295.847061][ T7336] tipc: Enabling of bearer rejected, already enabled [ 298.278505][ T7350] loop0: detected capacity change from 0 to 512 [ 298.289822][ T7346] netlink: 32 bytes leftover after parsing attributes in process `syz.4.850'. [ 298.333356][ T7350] EXT4-fs (loop0): Ignoring removed oldalloc option [ 298.624099][ T7350] EXT4-fs (loop0): Ignoring removed nobh option [ 298.625955][ T7357] tipc: Enabled bearer , priority 0 [ 298.851235][ T7353] tipc: Disabling bearer [ 298.893622][ T7350] EXT4-fs error (device loop0): ext4_xattr_inode_iget:401: inode #11: comm syz.0.852: iget: bad extra_isize 90 (inode size 256) [ 298.986047][ T7350] EXT4-fs (loop0): Remounting filesystem read-only [ 299.008510][ T7350] EXT4-fs error (device loop0): ext4_xattr_inode_iget:406: comm syz.0.852: error while reading EA inode 11 err=-117 [ 299.019792][ T7365] loop2: detected capacity change from 0 to 128 [ 299.027738][ T7350] EXT4-fs (loop0): Remounting filesystem read-only [ 299.036332][ T7350] EXT4-fs error (device loop0): ext4_xattr_inode_iget:401: inode #11: comm syz.0.852: iget: bad extra_isize 90 (inode size 256) [ 299.090300][ T7350] EXT4-fs (loop0): Remounting filesystem read-only [ 299.117894][ T7350] EXT4-fs error (device loop0): ext4_xattr_inode_iget:406: comm syz.0.852: error while reading EA inode 11 err=-117 [ 299.151327][ T7350] EXT4-fs (loop0): Remounting filesystem read-only [ 299.171267][ T7350] EXT4-fs error (device loop0): ext4_xattr_inode_iget:401: inode #18: comm syz.0.852: iget: bad extra_isize 90 (inode size 256) [ 299.293934][ T7350] EXT4-fs (loop0): Remounting filesystem read-only [ 299.300626][ T7350] EXT4-fs error (device loop0): ext4_xattr_inode_iget:406: comm syz.0.852: error while reading EA inode 18 err=-117 [ 299.331333][ T7350] EXT4-fs (loop0): Remounting filesystem read-only [ 299.353452][ T7350] EXT4-fs error (device loop0): ext4_xattr_inode_iget:401: inode #18: comm syz.0.852: iget: bad extra_isize 90 (inode size 256) [ 299.394513][ T7350] EXT4-fs (loop0): Remounting filesystem read-only [ 299.411465][ T7350] EXT4-fs error (device loop0): ext4_xattr_inode_iget:406: comm syz.0.852: error while reading EA inode 18 err=-117 [ 299.691067][ T7374] loop2: detected capacity change from 0 to 512 [ 299.703840][ T7350] EXT4-fs (loop0): Remounting filesystem read-only [ 299.748975][ T7350] EXT4-fs (loop0): 1 orphan inode deleted [ 299.754997][ T7350] EXT4-fs (loop0): mounted filesystem without journal. Opts: data_err=ignore,oldalloc,debug_want_extra_isize=0x000000000000005a,nobh,errors=remount-ro,nodiscard,grpid,. Quota mode: none. [ 300.047779][ T7381] loop4: detected capacity change from 0 to 512 [ 300.054576][ T7374] EXT4-fs (loop2): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 300.100898][ T7374] ext4 filesystem being mounted at /187/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 300.810504][ T7384] tipc: Enabling of bearer rejected, already enabled [ 300.922297][ T7381] EXT4-fs error (device loop4): ext4_orphan_get:1406: inode #15: comm syz.4.859: inode has both inline data and extents flags [ 301.325084][ T7381] EXT4-fs error (device loop4): ext4_orphan_get:1411: comm syz.4.859: couldn't read orphan inode 15 (err -117) [ 301.339428][ T7381] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 302.071645][ T7395] 9pnet: Insufficient options for proto=fd [ 302.372108][ T7404] netlink: 32 bytes leftover after parsing attributes in process `syz.3.869'. [ 303.358943][ T7414] loop1: detected capacity change from 0 to 512 [ 303.390108][ T7416] loop0: detected capacity change from 0 to 512 [ 303.709435][ T7416] EXT4-fs (loop0): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 303.806365][ T7414] EXT4-fs error (device loop1): ext4_do_update_inode:5229: inode #16: comm syz.1.873: corrupted inode contents [ 303.972991][ T7416] ext4 filesystem being mounted at /150/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 304.089896][ T7414] EXT4-fs error (device loop1): ext4_dirty_inode:6077: inode #16: comm syz.1.873: mark_inode_dirty error [ 304.383635][ T7414] EXT4-fs error (device loop1): ext4_do_update_inode:5229: inode #16: comm syz.1.873: corrupted inode contents [ 304.488085][ T7416] tipc: Enabling of bearer rejected, already enabled [ 304.503699][ T7414] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #16: comm syz.1.873: mark_inode_dirty error [ 304.560634][ T7414] EXT4-fs error (device loop1): ext4_do_update_inode:5229: inode #16: comm syz.1.873: corrupted inode contents [ 304.643352][ T7414] EXT4-fs error (device loop1) in ext4_orphan_del:303: Corrupt filesystem [ 304.710688][ T7414] EXT4-fs error (device loop1): ext4_do_update_inode:5229: inode #16: comm syz.1.873: corrupted inode contents [ 304.830872][ T7414] EXT4-fs error (device loop1): ext4_truncate:4286: inode #16: comm syz.1.873: mark_inode_dirty error [ 304.876483][ T7414] EXT4-fs error (device loop1) in ext4_process_orphan:345: Corrupt filesystem [ 304.900338][ T7414] EXT4-fs (loop1): 1 truncate cleaned up [ 304.923395][ T7414] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 304.960706][ T7414] ext4 filesystem being mounted at /185/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 305.022091][ T7443] program syz.0.883 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 305.072110][ T7414] EXT4-fs (loop1): re-mounted. Opts: (null). Quota mode: writeback. [ 305.092057][ T7414] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended [ 305.330213][ T7414] EXT4-fs (loop1): re-mounted. Opts: . Quota mode: writeback. [ 305.356737][ T7448] netlink: 32 bytes leftover after parsing attributes in process `syz.3.885'. [ 306.326001][ T7441] loop2: detected capacity change from 0 to 32768 [ 307.268652][ T7441] JBD2: Ignoring recovery information on journal [ 307.289161][ T7467] loop0: detected capacity change from 0 to 512 [ 307.442125][ T7441] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 307.491542][ T7467] EXT4-fs (loop0): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 307.598800][ T7467] ext4 filesystem being mounted at /156/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 307.701723][ T7467] tipc: Enabling of bearer rejected, already enabled [ 307.717979][ T4186] ocfs2: Unmounting device (7,2) on (node local) [ 308.481881][ T7496] loop0: detected capacity change from 0 to 512 [ 308.776554][ T7496] EXT4-fs (loop0): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 308.833534][ T7496] ext4 filesystem being mounted at /159/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 309.799860][ T7512] loop2: detected capacity change from 0 to 512 [ 309.931363][ T7514] device gre0 entered promiscuous mode [ 309.946116][ T7512] EXT4-fs (loop2): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 309.966506][ T7512] ext4 filesystem being mounted at /197/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 310.014607][ T7512] tipc: Enabling of bearer rejected, already enabled [ 310.177575][ T7506] loop1: detected capacity change from 0 to 32768 [ 310.315869][ T7506] JBD2: Ignoring recovery information on journal [ 310.528285][ T7506] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 311.394606][ T4187] ocfs2: Unmounting device (7,1) on (node local) [ 312.167912][ T7549] tipc: Enabling of bearer rejected, already enabled [ 312.762185][ T7558] loop0: detected capacity change from 0 to 512 [ 312.859703][ T7551] loop2: detected capacity change from 0 to 7 [ 312.913407][ T7558] EXT4-fs (loop0): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 312.981267][ T7551] loop2: [ 312.988004][ T7565] loop1: detected capacity change from 0 to 512 [ 313.003339][ T7558] ext4 filesystem being mounted at /162/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 313.033437][ T7551] loop2: partition table partially beyond EOD, truncated [ 313.108611][ T7565] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 313.129255][ T7558] tipc: Enabling of bearer rejected, already enabled [ 313.176870][ T7565] EXT4-fs (loop1): 1 orphan inode deleted [ 313.182641][ T7565] EXT4-fs (loop1): 1 truncate cleaned up [ 313.218778][ T7565] EXT4-fs (loop1): mounted filesystem without journal. Opts: bsdgroups,nodelalloc,nombcache,stripe=0x0000000000000005,jqfmt=vfsv0,quota,,errors=continue. Quota mode: writeback. [ 314.795812][ T7588] loop2: detected capacity change from 0 to 512 [ 315.034823][ T7588] EXT4-fs (loop2): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 315.106004][ T7588] ext4 filesystem being mounted at /202/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 315.196637][ T7601] loop4: detected capacity change from 0 to 512 [ 315.293105][ T7604] tipc: Enabling of bearer rejected, already enabled [ 315.406533][ T7601] EXT4-fs (loop4): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 315.484333][ T7601] ext4 filesystem being mounted at /151/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 316.207899][ T7601] tipc: Enabling of bearer rejected, already enabled [ 316.994893][ T7632] netlink: 4 bytes leftover after parsing attributes in process `syz.1.941'. [ 317.240185][ T1432] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.248802][ T1432] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.720482][ T7637] loop4: detected capacity change from 0 to 512 [ 317.765688][ T7640] autofs4:pid:7640:autofs_fill_super: called with bogus options [ 317.853803][ T7637] EXT4-fs (loop4): mounted filesystem without journal. Opts: journal_dev=0x0000000000000002,journal_dev=0x0000000000000006,,errors=continue. Quota mode: writeback. [ 317.894544][ T7637] ext4 filesystem being mounted at /153/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 318.070515][ T7654] loop0: detected capacity change from 0 to 512 [ 318.070613][ T7651] loop1: detected capacity change from 0 to 512 [ 318.177721][ T7654] EXT4-fs (loop0): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 318.181990][ T7637] EXT4-fs error (device loop4): ext4_get_inode_usage:835: inode #12: comm syz.4.943: corrupted xattr block 6 [ 318.203331][ T7654] ext4 filesystem being mounted at /168/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 318.231451][ T7654] tipc: Enabling of bearer rejected, already enabled [ 318.265699][ T7651] EXT4-fs (loop1): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 318.288016][ T7651] ext4 filesystem being mounted at /198/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 318.383381][ T7660] tipc: Enabling of bearer rejected, already enabled [ 320.292975][ T7670] ieee802154 phy0 wpan0: encryption failed: -22 [ 321.912527][ T7683] loop2: detected capacity change from 0 to 512 [ 322.090717][ T7683] EXT4-fs error (device loop2): ext4_iget_extra_inode:4573: inode #15: comm syz.2.956: corrupted in-inode xattr [ 322.164392][ T7683] EXT4-fs error (device loop2): ext4_orphan_get:1411: comm syz.2.956: couldn't read orphan inode 15 (err -117) [ 322.220321][ T7683] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,,errors=continue. Quota mode: none. [ 322.246008][ T7696] loop1: detected capacity change from 0 to 512 [ 322.298399][ T7683] EXT4-fs error (device loop2): ext4_map_blocks:631: inode #2: block 3: comm syz.2.956: lblock 0 mapped to illegal pblock 3 (length 1) [ 322.376634][ T7683] EXT4-fs warning (device loop2): dx_probe:823: inode #2: lblock 0: comm syz.2.956: error -117 reading directory block [ 322.426578][ T7700] loop4: detected capacity change from 0 to 128 [ 322.565647][ T7696] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 322.636983][ T7704] binder: 7698:7704 ioctl c0306201 0 returned -14 [ 322.883784][ T7696] ext4 filesystem being mounted at /200/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 323.293493][ T7708] ieee802154 phy0 wpan0: encryption failed: -22 [ 323.479352][ T7710] loop0: detected capacity change from 0 to 512 [ 323.787440][ T7716] loop2: detected capacity change from 0 to 164 [ 323.839780][ T7710] EXT4-fs (loop0): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 323.867254][ T7710] ext4 filesystem being mounted at /175/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 324.673863][ T7722] tipc: Enabling of bearer rejected, already enabled [ 326.775914][ T7731] netlink: 8 bytes leftover after parsing attributes in process `syz.4.972'. [ 327.170879][ T7745] netlink: 12 bytes leftover after parsing attributes in process `syz.1.976'. [ 327.252491][ T7746] binder: 7737:7746 ioctl c0306201 0 returned -14 [ 329.118922][ T7767] loop0: detected capacity change from 0 to 512 [ 329.946620][ T7774] loop4: detected capacity change from 0 to 256 [ 330.024362][ T7774] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 330.089127][ T7767] EXT4-fs (loop0): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 330.173378][ T7767] ext4 filesystem being mounted at /179/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 330.544388][ T7789] binder: 7784:7789 ioctl c0306201 0 returned -14 [ 331.267619][ T7786] tipc: Enabling of bearer rejected, already enabled [ 333.134769][ T7808] loop0: detected capacity change from 0 to 512 [ 333.657811][ T7808] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,nogrpid,quota,,errors=continue. Quota mode: writeback. [ 333.968581][ T7808] ext4 filesystem being mounted at /180/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 334.016224][ T7796] chnl_net:caif_netlink_parms(): no params data found [ 334.056457][ T7818] loop1: detected capacity change from 0 to 164 [ 335.005753][ T7796] bridge0: port 1(bridge_slave_0) entered blocking state [ 335.282263][ T7796] bridge0: port 1(bridge_slave_0) entered disabled state [ 335.355660][ T7796] device bridge_slave_0 entered promiscuous mode [ 335.419561][ T4227] Bluetooth: hci5: command 0x0409 tx timeout [ 335.428847][ T7796] bridge0: port 2(bridge_slave_1) entered blocking state [ 335.436635][ T7796] bridge0: port 2(bridge_slave_1) entered disabled state [ 335.444840][ T7796] device bridge_slave_1 entered promiscuous mode [ 335.578951][ T7796] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 335.639837][ T7796] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 336.652274][ T7855] loop2: detected capacity change from 0 to 512 [ 336.742798][ T7796] team0: Port device team_slave_0 added [ 336.771871][ T7857] device batadv0 entered promiscuous mode [ 336.830019][ T7857] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 336.839803][ T7855] EXT4-fs (loop2): Ignoring removed bh option [ 336.873310][ T7857] device batadv0 left promiscuous mode [ 336.929011][ T7855] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 336.976906][ T7796] team0: Port device team_slave_1 added [ 337.034786][ T7855] EXT4-fs error (device loop2): ext4_iget_extra_inode:4573: inode #15: comm syz.2.1012: corrupted in-inode xattr [ 337.080032][ T7855] EXT4-fs error (device loop2): ext4_orphan_get:1411: comm syz.2.1012: couldn't read orphan inode 15 (err -117) [ 337.080386][ T7796] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 337.105068][ T7855] EXT4-fs (loop2): mounted filesystem without journal. Opts: auto_da_alloc=0x0000000000000002,grpid,bh,grpid,noauto_da_alloc,max_dir_size_kb=0x0000000000000005,init_itable=0x0000000000000009,errors=continue,usrjquota=,nolazytime,norecovery,,errors=continue. Quota mode: none. [ 337.196982][ T7796] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 337.306052][ T7796] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 337.345807][ T7796] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 337.376554][ T7796] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 337.428587][ T7796] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 337.473370][ T1335] Bluetooth: hci5: command 0x041b tx timeout [ 338.272121][ T7796] device hsr_slave_0 entered promiscuous mode [ 338.732836][ T7796] device hsr_slave_1 entered promiscuous mode [ 338.743455][ T7796] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 338.751063][ T7796] Cannot create hsr debugfs directory [ 338.846339][ T7883] loop2: detected capacity change from 0 to 736 [ 339.056093][ T7893] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1026'. [ 339.065902][ T7890] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1024'. [ 339.473869][ T7890] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1024'. [ 339.755623][ T4228] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 339.868586][ T1335] Bluetooth: hci5: command 0x040f tx timeout [ 339.878898][ T7899] loop1: detected capacity change from 0 to 256 [ 340.068433][ T7796] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 340.130234][ T7796] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 340.220550][ T7910] loop2: detected capacity change from 0 to 512 [ 340.390011][ T144] tipc: Disabling bearer [ 340.416861][ T7910] EXT4-fs (loop2): Ignoring removed bh option [ 340.731615][ T7796] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 340.739817][ T144] tipc: Left network mode [ 340.766003][ T7910] EXT4-fs (loop2): inline encryption not supported [ 340.947937][ T7910] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 341.259162][ T7910] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1062: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 341.285799][ T7796] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 341.537075][ T7910] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.1033: bg 0: block 248: padding at end of block bitmap is not set [ 341.558069][ T7926] loop1: detected capacity change from 0 to 128 [ 341.589201][ T7910] Quota error (device loop2): write_blk: dquota write failed [ 341.602520][ T7910] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota [ 341.618482][ T7926] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 1, start 00000006) [ 341.622382][ T7910] EXT4-fs error (device loop2): ext4_acquire_dquot:6236: comm syz.2.1033: Failed to acquire dquot type 1 [ 341.643265][ T7926] FAT-fs (loop1): Filesystem has been set read-only [ 341.683012][ T7910] EXT4-fs (loop2): 1 truncate cleaned up [ 341.694989][ T7910] EXT4-fs (loop2): mounted filesystem without journal. Opts: bh,inlinecrypt,nombcache,,errors=continue. Quota mode: writeback. [ 341.744959][ T7910] syz.2.1033 (7910) used greatest stack depth: 19576 bytes left [ 341.833546][ T7796] 8021q: adding VLAN 0 to HW filter on device bond0 [ 341.893936][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 341.931183][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 341.944681][ T4288] Bluetooth: hci5: command 0x0419 tx timeout [ 341.946208][ T7796] 8021q: adding VLAN 0 to HW filter on device team0 [ 342.010364][ T4267] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 342.039553][ T4267] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 342.059791][ T4267] bridge0: port 1(bridge_slave_0) entered blocking state [ 342.066988][ T4267] bridge0: port 1(bridge_slave_0) entered forwarding state [ 342.121007][ T4267] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 342.164550][ T4267] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 342.219369][ T4267] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 342.270490][ T4267] bridge0: port 2(bridge_slave_1) entered blocking state [ 342.277875][ T4267] bridge0: port 2(bridge_slave_1) entered forwarding state [ 342.327973][ T4267] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 342.558343][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 343.392787][ T1171] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 343.609298][ T1171] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 343.656834][ T1171] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 343.714134][ T1171] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 343.780730][ T1171] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 343.848475][ T1171] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 343.888446][ T1171] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 343.896984][ T1171] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 343.906388][ T1171] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 343.918662][ T7796] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 343.943316][ C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 344.128599][ T7968] loop0: detected capacity change from 0 to 1024 [ 344.166326][ T7968] EXT4-fs (loop0): Ignoring removed bh option [ 344.251058][ T7968] EXT4-fs (loop0): mounted filesystem without journal. Opts: nobarrier,dioread_lock,barrier=0x0000000000000004,nolazytime,debug_want_extra_isize=0x0000000000000080,lazytime,errors=remount-ro,stripe=0x0000000000000010,bh,init_itable,. Quota mode: none. [ 344.582615][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 344.608527][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 344.637978][ T7994] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1054'. [ 344.655649][ T7796] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 344.781597][ T144] device hsr_slave_0 left promiscuous mode [ 344.811998][ T144] device hsr_slave_1 left promiscuous mode [ 344.847413][ T144] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 344.887729][ T144] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 344.938651][ T144] device bridge_slave_1 left promiscuous mode [ 345.008376][ T144] bridge0: port 2(bridge_slave_1) entered disabled state [ 345.114949][ T144] device bridge_slave_0 left promiscuous mode [ 345.160517][ T144] bridge0: port 1(bridge_slave_0) entered disabled state [ 345.904289][ T8016] loop0: detected capacity change from 0 to 164 [ 346.880773][ T8032] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1063'. [ 347.070220][ T8035] loop0: detected capacity change from 0 to 128 [ 347.877517][ T144] team0 (unregistering): Port device team_slave_1 removed [ 347.911787][ T144] team0 (unregistering): Port device team_slave_0 removed [ 348.045854][ T144] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 348.129518][ T144] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 348.674005][ T144] bond0 (unregistering): Released all slaves [ 349.467196][ T8064] loop0: detected capacity change from 0 to 1024 [ 349.579330][ T4839] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 350.232884][ T4839] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 350.258918][ T1171] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 350.268492][ T1171] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 350.281993][ T7796] device veth0_vlan entered promiscuous mode [ 350.289400][ T1171] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 350.307820][ T1171] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 350.324236][ T7796] device veth1_vlan entered promiscuous mode [ 350.356582][ T1171] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 350.367490][ T1171] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 350.382044][ T7796] device veth0_macvtap entered promiscuous mode [ 350.428446][ T8064] EXT4-fs (loop0): Ignoring removed bh option [ 350.441361][ T8073] loop1: detected capacity change from 0 to 512 [ 350.459527][ T8072] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1077'. [ 350.471576][ T7796] device veth1_macvtap entered promiscuous mode [ 350.502476][ T7796] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 350.514726][ T8072] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1077'. [ 350.522997][ T7796] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 350.539285][ T8064] EXT4-fs (loop0): mounted filesystem without journal. Opts: nobarrier,dioread_lock,barrier=0x0000000000000004,nolazytime,debug_want_extra_isize=0x0000000000000080,lazytime,errors=remount-ro,stripe=0x0000000000000010,bh,init_itable,. Quota mode: none. [ 350.572005][ T7796] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 350.582977][ T7796] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 350.593997][ T7796] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 350.605174][ T7796] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 350.615265][ T7796] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 350.630021][ T7796] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 350.659426][ T7796] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 350.702076][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 350.723894][ T8073] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 350.734218][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 350.758334][ T8073] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e02c, mo2=0002] [ 350.775943][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 350.785740][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 350.798022][ T8073] EXT4-fs (loop1): orphan cleanup on readonly fs [ 350.798849][ T7796] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 350.804849][ T8073] EXT4-fs error (device loop1): ext4_orphan_get:1432: comm syz.1.1076: bad orphan inode 3 [ 350.833271][ T8073] EXT4-fs (loop1): Remounting filesystem read-only [ 350.840019][ T8073] EXT4-fs (loop1): mounted filesystem without journal. Opts: nojournal_checksum,noblock_validity,discard,errors=remount-ro,data=writeback. Quota mode: none. [ 350.870460][ T7796] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 350.880497][ T7796] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 350.894068][ T7796] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 350.913154][ T7796] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 350.925865][ T8092] loop2: detected capacity change from 0 to 512 [ 350.932268][ T7796] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 350.944108][ T7796] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 350.953575][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 350.970877][ T8073] EXT4-fs warning (device loop1): dx_probe:893: inode #2: comm syz.1.1076: dx entry: limit 0 != root limit 125 [ 350.975484][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 350.991348][ T8073] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.1076: Corrupt directory, running e2fsck is recommended [ 351.040567][ T7796] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 351.067134][ T7796] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 351.082391][ T7796] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 351.092910][ T7796] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 351.168452][ T8092] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 351.187211][ T8099] netlink: 'syz.4.1084': attribute type 7 has an invalid length. [ 351.261672][ T8092] EXT4-fs error (device loop2): ext4_validate_block_bitmap:420: comm syz.2.1081: bg 0: bad block bitmap checksum [ 351.527022][ T8092] Quota error (device loop2): write_blk: dquota write failed [ 351.563367][ T8092] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota [ 351.596487][ T8092] EXT4-fs error (device loop2): ext4_acquire_dquot:6236: comm syz.2.1081: Failed to acquire dquot type 1 [ 352.298341][ T4237] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 352.335294][ T4237] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 352.423259][ C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 352.430060][ T4237] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 352.464919][ T4587] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 352.500796][ T4587] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 352.518216][ T8119] tipc: Enabled bearer , priority 0 [ 352.601484][ T8119] device syzkaller0 entered promiscuous mode [ 352.628168][ T4237] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 352.677139][ T8118] tipc: Resetting bearer [ 352.828397][ T8118] tipc: Disabling bearer [ 353.309511][ T8157] loop0: detected capacity change from 0 to 512 [ 353.754224][ T8157] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,usrquota,minixdf,nombcache,. Quota mode: writeback. [ 354.116852][ T8157] ext4 filesystem being mounted at /206/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 354.276843][ T8167] loop5: detected capacity change from 0 to 128 [ 354.364427][ T8167] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 354.453357][ T8167] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 354.564578][ T8179] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1105'. [ 354.661592][ T8179] netlink: 'syz.0.1105': attribute type 1 has an invalid length. [ 354.764207][ T26] audit: type=1326 audit(1776601358.210:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8181 comm="syz.4.1108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b593fd819 code=0x7ffc0000 [ 354.811455][ T8185] loop2: detected capacity change from 0 to 1024 [ 354.879404][ T26] audit: type=1326 audit(1776601358.210:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8181 comm="syz.4.1108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f8b593fd819 code=0x7ffc0000 [ 354.982194][ T26] audit: type=1326 audit(1776601358.210:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8181 comm="syz.4.1108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f8b593fd819 code=0x7ffc0000 [ 355.014011][ T8185] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 355.102300][ T8207] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1117'. [ 356.223674][ T8236] loop4: detected capacity change from 0 to 512 [ 356.827013][ T8236] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 357.143293][ T8236] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 357.183217][ T8246] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1127'. [ 357.273922][ T8236] EXT4-fs (loop4): 1 truncate cleaned up [ 357.291864][ T8236] EXT4-fs (loop4): mounted filesystem without journal. Opts: usrquota,usrjquota="data=ordered,noload,noinit_itable,grpjquota="init_itable,jqfmt=vfsold,noblock_validity,,errors=continue. Quota mode: writeback. [ 357.337587][ T8236] EXT4-fs (loop4): group quota file already specified [ 357.728503][ T8259] device syzkaller0 entered promiscuous mode [ 358.360614][ T8278] device syzkaller0 entered promiscuous mode [ 359.068226][ T8303] loop2: detected capacity change from 0 to 512 [ 359.165823][ T8305] ieee802154 phy0 wpan0: encryption failed: -22 [ 359.292554][ T8303] EXT4-fs (loop2): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 359.313667][ T8303] ext4 filesystem being mounted at /251/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 359.458946][ T8303] tipc: Enabling of bearer rejected, already enabled [ 359.573921][ T8325] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1152'. [ 360.110080][ T8341] x_tables: duplicate underflow at hook 3 [ 360.283595][ T8346] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1159'. [ 360.475376][ T8356] ieee802154 phy0 wpan0: encryption failed: -22 [ 360.747066][ T8362] loop4: detected capacity change from 0 to 512 [ 360.913005][ T8362] EXT4-fs (loop4): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 360.933022][ T8366] loop5: detected capacity change from 0 to 4096 [ 360.950979][ T8370] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1167'. [ 360.956819][ T8362] ext4 filesystem being mounted at /220/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 361.061331][ T8366] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 361.150062][ T8376] tipc: Enabling of bearer rejected, already enabled [ 362.920681][ T8193] Set syz1 is full, maxelem 65536 reached [ 363.041804][ T8420] loop5: detected capacity change from 0 to 512 [ 363.133339][ T8425] loop1: detected capacity change from 0 to 512 [ 363.144938][ T8420] EXT4-fs (loop5): 1 truncate cleaned up [ 363.150641][ T8420] EXT4-fs (loop5): mounted filesystem without journal. Opts: bsddf,,errors=continue. Quota mode: none. [ 363.367653][ T8425] EXT4-fs (loop1): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 363.482732][ T8425] ext4 filesystem being mounted at /249/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 364.471227][ T8443] tipc: Enabling of bearer rejected, already enabled [ 364.749317][ T8452] loop5: detected capacity change from 0 to 1024 [ 364.871927][ T8452] EXT4-fs (loop5): Quota format mount options ignored when QUOTA feature is enabled [ 364.993719][ T8452] EXT4-fs error (device loop5): ext4_map_blocks:631: inode #3: block 2: comm syz.5.1192: lblock 2 mapped to illegal pblock 2 (length 1) [ 365.107591][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 365.122254][ T8465] loop1: detected capacity change from 0 to 512 [ 365.144045][ T8452] Quota error (device loop5): qtree_write_dquot: dquota write failed [ 365.163515][ T8452] EXT4-fs error (device loop5): ext4_map_blocks:631: inode #3: block 48: comm syz.5.1192: lblock 0 mapped to illegal pblock 48 (length 1) [ 365.173454][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 365.210106][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 365.232280][ T8467] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1194'. [ 365.239524][ T8452] Quota error (device loop5): v2_write_file_info: Can't write info structure [ 365.248466][ T8465] EXT4-fs (loop1): Quota format mount options ignored when QUOTA feature is enabled [ 365.281414][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 365.297845][ T8465] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option [ 365.316708][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 365.346449][ T8465] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 365.350224][ T8452] EXT4-fs error (device loop5): ext4_acquire_dquot:6236: comm syz.5.1192: Failed to acquire dquot type 0 [ 365.356119][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 365.456165][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 365.461838][ T8450] loop0: detected capacity change from 0 to 32768 [ 365.480913][ T8452] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5873: Corrupt filesystem [ 365.495312][ T8465] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3894: comm syz.1.1193: Allocating blocks 41-42 which overlap fs metadata [ 365.509804][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 365.523176][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 365.527752][ T8465] EXT4-fs (loop1): Remounting filesystem read-only [ 365.530816][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 365.545441][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 365.552967][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 365.564504][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 365.572052][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 365.579915][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 365.587505][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 365.595074][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 365.596545][ T8465] Quota error (device loop1): write_blk: dquota write failed [ 365.602708][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 365.619116][ T8452] EXT4-fs error (device loop5): ext4_evict_inode:284: inode #11: comm syz.5.1192: mark_inode_dirty error [ 365.627851][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 365.645578][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 365.656479][ T8465] Quota error (device loop1): find_free_dqentry: Can't write quota data block 5 [ 365.676772][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 365.686651][ T8450] JBD2: Ignoring recovery information on journal [ 365.693396][ T8452] EXT4-fs warning (device loop5): ext4_evict_inode:287: couldn't mark inode dirty (err -117) [ 365.729404][ T8465] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 365.735742][ T8452] EXT4-fs (loop5): 1 orphan inode deleted [ 365.741394][ T8465] EXT4-fs error (device loop1): ext4_acquire_dquot:6236: comm syz.1.1193: Failed to acquire dquot type 1 [ 365.759584][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 365.777122][ T8465] EXT4-fs (loop1): Remounting filesystem read-only [ 365.803492][ T8465] EXT4-fs error (device loop1): mb_free_blocks:1889: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt. [ 365.824051][ T8450] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 365.844576][ T8452] EXT4-fs (loop5): mounted filesystem without journal. Opts: nodioread_nolock,noblock_validity,data_err=ignore,max_batch_time=0x00000000000008c9,nodiscard,stripe=0x0000000000000004,jqfmt=vfsold,,errors=continue. Quota mode: none. [ 365.863162][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 365.921490][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 365.929732][ T8465] EXT4-fs (loop1): Remounting filesystem read-only [ 365.955164][ T8465] EXT4-fs error (device loop1): ext4_do_update_inode:5229: inode #12: comm syz.1.1193: corrupted inode contents [ 365.975695][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 365.988075][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 366.003988][ T8465] EXT4-fs (loop1): Remounting filesystem read-only [ 366.010668][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 366.026742][ T8465] EXT4-fs error (device loop1): ext4_dirty_inode:6077: inode #12: comm syz.1.1193: mark_inode_dirty error [ 366.048432][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 366.063783][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 366.082978][ T4184] ocfs2: Unmounting device (7,0) on (node local) [ 366.100190][ T8465] EXT4-fs (loop1): Remounting filesystem read-only [ 366.114684][ T8465] EXT4-fs error (device loop1): ext4_do_update_inode:5229: inode #12: comm syz.1.1193: corrupted inode contents [ 366.133684][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 366.148994][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 366.166922][ T8465] EXT4-fs (loop1): Remounting filesystem read-only [ 366.181240][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 366.191752][ T8465] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #12: comm syz.1.1193: mark_inode_dirty error [ 366.233189][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 366.260304][ T8465] EXT4-fs (loop1): Remounting filesystem read-only [ 366.277418][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 366.303276][ T8465] EXT4-fs error (device loop1): ext4_do_update_inode:5229: inode #12: comm syz.1.1193: corrupted inode contents [ 366.321453][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 366.341879][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 366.363655][ T8465] EXT4-fs (loop1): Remounting filesystem read-only [ 366.370217][ T8465] EXT4-fs error (device loop1) in ext4_orphan_del:303: Corrupt filesystem [ 366.380480][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 366.419719][ T8465] EXT4-fs (loop1): Remounting filesystem read-only [ 366.429614][ T8465] EXT4-fs error (device loop1): ext4_do_update_inode:5229: inode #12: comm syz.1.1193: corrupted inode contents [ 366.448274][ T8465] EXT4-fs (loop1): Remounting filesystem read-only [ 366.469613][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 366.477458][ T8465] EXT4-fs error (device loop1): ext4_truncate:4286: inode #12: comm syz.1.1193: mark_inode_dirty error [ 366.507803][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 366.548387][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 366.569416][ T8465] EXT4-fs (loop1): Remounting filesystem read-only [ 366.576392][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 366.620785][ T8465] EXT4-fs error (device loop1) in ext4_process_orphan:345: Corrupt filesystem [ 366.681008][ T8465] EXT4-fs (loop1): Remounting filesystem read-only [ 366.727701][ T8465] EXT4-fs (loop1): 1 truncate cleaned up [ 366.758664][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 366.766612][ T8465] EXT4-fs (loop1): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000000008000,noblock_validity,jqfmt=vfsold,nodelalloc,errors=remount-ro,nomblk_io_submit,nojournal_checksum,mb_optimize_scan=0x0000000000000001,resgid=0x00000000000000002. Quota mode: writeback. [ 366.794746][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 366.802335][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 366.812325][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 366.863203][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 366.871218][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 366.889573][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 366.903154][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 366.923180][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 366.930650][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 366.983438][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 366.991067][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.013248][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.020834][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.052460][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.063165][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.070677][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.113170][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.120720][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.150445][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.163216][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.170660][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.180412][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.193178][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.200674][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.208794][ T8498] loop4: detected capacity change from 0 to 512 [ 367.229046][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.238468][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.249233][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.260829][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.277318][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.285153][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.292589][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.300552][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.307822][ T8498] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,noblock_validity,. Quota mode: writeback. [ 367.308407][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.411472][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.419750][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.427921][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.435425][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.443194][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.450604][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.462518][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.470128][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.473348][ T8498] ext4 filesystem being mounted at /226/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 367.478021][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.497303][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.504944][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.509236][ T8503] loop0: detected capacity change from 0 to 512 [ 367.512622][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.526474][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.543178][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.554232][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.572152][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.579677][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.598993][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.613160][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.630396][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.644599][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.658698][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.690211][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.709898][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.729452][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.744356][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.762436][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.770594][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.784875][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.798116][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.808988][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.820605][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.831073][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.842664][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.852906][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.864848][ T4231] hid-generic 0100:0000:0000.0001: unknown main item tag 0x0 [ 367.886420][ T4231] hid-generic 0100:0000:0000.0001: hidraw0: HID v0.03 Device [syz0] on syz1 [ 367.981899][ T8506] fido_id[8506]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 367.993477][ T5414] EXT4-fs error (device loop5): ext4_map_blocks:631: inode #3: block 1: comm kworker/u4:14: lblock 1 mapped to illegal pblock 1 (length 1) [ 368.082971][ T8503] EXT4-fs error (device loop0): ext4_xattr_inode_iget:401: comm syz.0.1199: inode #1: comm syz.0.1199: iget: illegal inode # [ 368.113660][ T5414] Quota error (device loop5): remove_tree: Can't read quota data block 1 [ 368.139319][ T5414] EXT4-fs error (device loop5): ext4_release_dquot:6272: comm kworker/u4:14: Failed to release dquot type 0 [ 368.164420][ T8503] EXT4-fs error (device loop0): ext4_xattr_inode_iget:406: comm syz.0.1199: error while reading EA inode 1 err=-117 [ 368.185001][ T8503] EXT4-fs error (device loop0): ext4_xattr_inode_iget:401: comm syz.0.1199: inode #1: comm syz.0.1199: iget: illegal inode # [ 368.206231][ T8503] EXT4-fs error (device loop0): ext4_xattr_inode_iget:406: comm syz.0.1199: error while reading EA inode 1 err=-117 [ 368.221430][ T8452] EXT4-fs error (device loop5): __ext4_get_inode_loc:4334: comm syz.5.1192: Invalid inode table block 1 in block_group 0 [ 368.273554][ T8503] EXT4-fs (loop0): 1 orphan inode deleted [ 368.279380][ T8503] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpjquota=,stripe=0x0000000000000003,norecovery,noinit_itable,init_itable=0x0000000000000001,minixdf,usrjquota=,debug_want_extra_isize=0x000000000000005c,errors=continue,dioread_lock,noblock_validity,noquota,,errors=continue. Quota mode: none. [ 368.329594][ T8452] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5873: Corrupt filesystem [ 368.338690][ T8503] EXT4-fs (loop0): re-mounted. Opts: . Quota mode: none. [ 368.361423][ T8510] loop1: detected capacity change from 0 to 512 [ 368.368216][ T8452] EXT4-fs error (device loop5): ext4_quota_off:6542: inode #3: comm syz.5.1192: mark_inode_dirty error [ 368.457960][ T8503] EXT4-fs (loop0): Remounting file system with no journal so ignoring journalled data option [ 368.513249][ T8503] EXT4-fs (loop0): changing journal_checksum during remount not supported; ignoring [ 368.538855][ T8503] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended [ 368.657652][ T8503] EXT4-fs (loop0): re-mounted. Opts: block_validity,journal_async_commit,barrier=0x0000000000000401,minixdf,data=ordered,noinit_itable,. Quota mode: none. [ 368.678000][ T8510] EXT4-fs (loop1): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 368.774283][ T8510] ext4 filesystem being mounted at /252/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 368.851905][ T8510] tipc: Enabling of bearer rejected, already enabled [ 369.496608][ T8543] loop4: detected capacity change from 0 to 512 [ 369.599157][ T8543] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,noblock_validity,. Quota mode: writeback. [ 369.622601][ T8543] ext4 filesystem being mounted at /229/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 369.703544][ C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 369.826892][ T8553] loop0: detected capacity change from 0 to 512 [ 369.883637][ T8553] EXT4-fs (loop0): Ignoring removed mblk_io_submit option [ 370.141903][ T8565] loop4: detected capacity change from 0 to 512 [ 370.345072][ T8565] EXT4-fs (loop4): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 370.359739][ T8531] loop1: detected capacity change from 0 to 32768 [ 370.367293][ T8565] ext4 filesystem being mounted at /232/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 370.423968][ T8565] tipc: Enabling of bearer rejected, already enabled [ 371.176100][ T8531] JBD2: Ignoring recovery information on journal [ 371.566352][ T8591] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1224'. [ 371.650648][ T8531] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 371.780081][ T8600] loop4: detected capacity change from 0 to 512 [ 371.826245][ T4187] ocfs2: Unmounting device (7,1) on (node local) [ 371.921994][ T8600] EXT4-fs (loop4): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 372.053405][ T8600] ext4 filesystem being mounted at /234/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 372.172006][ T8615] tipc: Enabling of bearer rejected, already enabled [ 373.027689][ T8626] loop5: detected capacity change from 0 to 512 [ 373.072001][ T8624] usb usb7: usbfs: process 8624 (syz.0.1234) did not claim interface 4 before use [ 373.090920][ T8628] loop1: detected capacity change from 0 to 512 [ 373.308988][ T8626] EXT4-fs (loop5): mounted filesystem without journal. Opts: grpquota,barrier,quota,,errors=continue. Quota mode: writeback. [ 373.329170][ T8628] EXT4-fs (loop1): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 373.374731][ T8474] Set syz1 is full, maxelem 65536 reached [ 373.430803][ T8628] ext4 filesystem being mounted at /256/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 373.441841][ T8626] ext4 filesystem being mounted at /33/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 373.924214][ T8648] tipc: Enabling of bearer rejected, already enabled [ 374.189468][ T8655] loop4: detected capacity change from 0 to 1024 [ 374.322907][ T8655] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 374.383157][ T8655] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869) [ 374.409886][ T8661] loop5: detected capacity change from 0 to 512 [ 374.453206][ T8655] EXT4-fs error (device loop4): ext4_get_journal_inode:5187: inode #5: comm syz.4.1241: unexpected bad inode w/o EXT4_IGET_BAD [ 374.474050][ T8661] EXT4-fs (loop5): can't mount with journal_checksum, fs mounted w/o journal [ 374.503595][ T8655] EXT4-fs (loop4): no journal found [ 374.523163][ T8655] EXT4-fs (loop4): can't get journal size [ 374.544718][ T8655] EXT4-fs (loop4): mounted filesystem without journal. Opts: noblock_validity,noinit_itable,norecovery,min_batch_time=0x000000000000071d,abort,,errors=continue. Quota mode: writeback. [ 374.972710][ T8657] loop1: detected capacity change from 0 to 32768 [ 375.032099][ T8674] loop4: detected capacity change from 0 to 256 [ 375.072724][ T8677] loop0: detected capacity change from 0 to 512 [ 375.077810][ T8678] loop2: detected capacity change from 0 to 512 [ 375.162132][ T8657] JBD2: Ignoring recovery information on journal [ 375.244227][ T8677] EXT4-fs (loop0): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 375.266655][ T8678] EXT4-fs (loop2): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 375.283499][ T8678] ext4 filesystem being mounted at /262/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 375.294455][ T8677] ext4 filesystem being mounted at /228/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 375.347309][ T8657] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 375.888449][ T8689] tipc: Enabling of bearer rejected, already enabled [ 375.937138][ T4187] ocfs2: Unmounting device (7,1) on (node local) [ 376.067833][ T8696] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1250'. [ 377.725575][ T8705] loop4: detected capacity change from 0 to 512 [ 377.927311][ T8705] EXT4-fs (loop4): Ignoring removed oldalloc option [ 377.953456][ T8705] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 378.023260][ T8717] loop2: detected capacity change from 0 to 512 [ 378.050251][ T8714] loop1: detected capacity change from 0 to 4096 [ 378.064087][ T8705] EXT4-fs error (device loop4): ext4_orphan_get:1406: inode #15: comm syz.4.1254: inode has both inline data and extents flags [ 378.104387][ T8717] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 378.134256][ T8714] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option [ 378.186611][ T8705] EXT4-fs error (device loop4): ext4_orphan_get:1411: comm syz.4.1254: couldn't read orphan inode 15 (err -117) [ 378.263389][ T8714] EXT4-fs (loop1): mounted filesystem without journal. Opts: init_itable=0x0000000000000101,stripe=0x0000000000000061,journal_ioprio=0x0000000000000006,minixdf,nodiscard,nomblk_io_submit,acl,nojournal_checksum,resuid=0x0000000000000000,,errors=continue. Quota mode: writeback. [ 378.322962][ T8705] EXT4-fs (loop4): mounted filesystem without journal. Opts: noblock_validity,resgid=0x000000000000ee00,oldalloc,noload,resgid=0x0000000000000000,dioread_nolock,,errors=continue. Quota mode: none. [ 378.446921][ T26] audit: type=1800 audit(1776601381.890:29): pid=8714 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1256" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 378.676257][ T1432] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.682825][ T1432] ieee802154 phy1 wpan1: encryption failed: -22 [ 378.724665][ T8734] loop2: detected capacity change from 0 to 1024 [ 378.792854][ T8734] EXT4-fs (loop2): Ignoring removed mblk_io_submit option [ 378.833238][ T8734] EXT4-fs (loop2): Quota format mount options ignored when QUOTA feature is enabled [ 378.948859][ T8734] EXT4-fs error (device loop2): ext4_ext_check_inode:501: inode #11: comm syz.2.1259: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 379.074135][ T8742] loop0: detected capacity change from 0 to 512 [ 379.110915][ T8734] EXT4-fs error (device loop2): ext4_orphan_get:1411: comm syz.2.1259: couldn't read orphan inode 11 (err -117) [ 379.123962][ T8734] EXT4-fs (loop2): mounted filesystem without journal. Opts: sysvgroups,noload,mblk_io_submit,jqfmt=vfsv0,discard,usrjquota=,grpquota,quota,,errors=continue. Quota mode: writeback. [ 379.190905][ T8742] EXT4-fs (loop0): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 379.230199][ T8738] loop4: detected capacity change from 0 to 32768 [ 379.327108][ T8738] JBD2: Ignoring recovery information on journal [ 379.407870][ T8742] ext4 filesystem being mounted at /234/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 380.319998][ T8752] tipc: Enabling of bearer rejected, already enabled [ 380.379667][ T8738] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 380.926515][ T8760] loop2: detected capacity change from 0 to 512 [ 381.039372][ T4194] ocfs2: Unmounting device (7,4) on (node local) [ 381.139578][ T8760] EXT4-fs (loop2): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 381.303301][ T8760] ext4 filesystem being mounted at /265/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 381.438093][ T8790] tipc: Enabling of bearer rejected, already enabled [ 382.489743][ T8821] loop0: detected capacity change from 0 to 512 [ 382.571029][ T8826] loop2: detected capacity change from 0 to 1764 [ 382.712647][ T8821] EXT4-fs (loop0): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 382.846064][ T8821] ext4 filesystem being mounted at /239/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 383.649209][ T8854] loop0: detected capacity change from 0 to 512 [ 383.815331][ T8854] EXT4-fs (loop0): inline encryption not supported [ 383.893959][ T8854] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002] [ 383.949197][ T8854] System zones: 0-2, 18-18, 34-35 [ 384.038084][ T8854] EXT4-fs (loop0): mounted filesystem without journal. Opts: nojournal_checksum,inlinecrypt,bsdgroups,debug,,errors=continue. Quota mode: writeback. [ 384.095509][ T8854] ext4 filesystem being mounted at /240/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 384.443081][ T8871] loop0: detected capacity change from 0 to 512 [ 384.589099][ T8871] EXT4-fs (loop0): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 384.685500][ T8871] ext4 filesystem being mounted at /241/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 384.910381][ T8889] tipc: Enabling of bearer rejected, already enabled [ 385.513500][ T4427] usb 2-1: new full-speed USB device number 2 using dummy_hcd [ 385.567947][ T8895] loop4: detected capacity change from 0 to 512 [ 385.773303][ T4427] usb 2-1: device descriptor read/64, error -71 [ 385.830544][ T8895] EXT4-fs (loop4): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 386.055047][ T8895] ext4 filesystem being mounted at /247/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 386.066632][ T4427] usb 2-1: new full-speed USB device number 3 using dummy_hcd [ 386.403291][ T4427] usb 2-1: device descriptor read/64, error -71 [ 386.564730][ T4427] usb usb2-port1: attempt power cycle [ 386.859888][ T8918] loop4: detected capacity change from 0 to 512 [ 386.895291][ T8673] Set syz1 is full, maxelem 65536 reached [ 387.006098][ T8918] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpid,grpquota,,errors=continue. Quota mode: writeback. [ 387.033187][ T4427] usb 2-1: new full-speed USB device number 4 using dummy_hcd [ 387.050681][ T8918] ext4 filesystem being mounted at /248/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 387.077334][ T8929] netlink: 'syz.0.1300': attribute type 9 has an invalid length. [ 387.153738][ T4427] usb 2-1: device descriptor read/8, error -71 [ 387.453291][ T4427] usb 2-1: new full-speed USB device number 5 using dummy_hcd [ 387.541134][ T8946] loop0: detected capacity change from 0 to 512 [ 387.586778][ T4427] usb 2-1: device descriptor read/8, error -71 [ 387.634511][ T8948] loop2: detected capacity change from 0 to 512 [ 388.212963][ T8948] EXT4-fs (loop2): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 388.343975][ T8946] EXT4-fs (loop0): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 388.432310][ T4427] usb usb2-port1: unable to enumerate USB device [ 388.444977][ T8948] ext4 filesystem being mounted at /275/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 388.459692][ T8946] ext4 filesystem being mounted at /246/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 388.578173][ T8965] tipc: Enabling of bearer rejected, already enabled [ 389.647335][ T8972] program syz.4.1315 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 389.781227][ T8978] loop2: detected capacity change from 0 to 512 [ 389.786891][ T8981] loop5: detected capacity change from 0 to 512 [ 389.854595][ T8986] netlink: 3 bytes leftover after parsing attributes in process `syz.1.1318'. [ 390.875853][ T8981] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #16: comm syz.5.1317: invalid indirect mapped block 4294967295 (level 0) [ 390.916619][ T8986] device vlan0 entered promiscuous mode [ 390.934899][ T8981] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #16: comm syz.5.1317: invalid indirect mapped block 4294967295 (level 1) [ 390.997694][ T8981] EXT4-fs (loop5): 1 orphan inode deleted [ 391.003728][ T8981] EXT4-fs (loop5): 1 truncate cleaned up [ 391.009560][ T8981] EXT4-fs (loop5): mounted filesystem without journal. Opts: nombcache,lazytime,block_validity,block_validity,nojournal_checksum,quota,jqfmt=vfsv0,,errors=continue. Quota mode: writeback. [ 391.167900][ T8978] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpid,grpquota,,errors=continue. Quota mode: writeback. [ 391.203406][ T8978] ext4 filesystem being mounted at /276/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 391.283033][ T9002] loop4: detected capacity change from 0 to 128 [ 391.397454][ T9002] FAT-fs (loop4): bogus number of reserved sectors [ 391.404128][ T9002] FAT-fs (loop4): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero [ 391.413660][ T9002] FAT-fs (loop4): Can't find a valid FAT filesystem [ 393.282592][ T9023] loop5: detected capacity change from 0 to 512 [ 393.340807][ T9022] loop2: detected capacity change from 0 to 512 [ 393.446415][ T9023] EXT4-fs (loop5): journaled quota format not specified [ 393.588730][ T9022] EXT4-fs (loop2): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 393.623328][ T9022] ext4 filesystem being mounted at /278/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 393.648400][ T9036] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1329'. [ 395.355776][ T9057] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1336'. [ 395.435131][ T9057] tipc: Started in network mode [ 395.453202][ T9057] tipc: Node identity -, cluster identity 4711 [ 397.498613][ T9088] loop5: detected capacity change from 0 to 512 [ 397.694032][ T9088] EXT4-fs (loop5): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 397.751702][ T9088] ext4 filesystem being mounted at /53/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 399.457307][ T9126] loop5: detected capacity change from 0 to 512 [ 399.603322][ T9126] EXT4-fs (loop5): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 399.623839][ T9126] ext4 filesystem being mounted at /59/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 399.680898][ T9055] Set syz1 is full, maxelem 65536 reached [ 400.297694][ T9134] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1360'. [ 400.314951][ T9134] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1360'. [ 400.443735][ T9136] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1361'. [ 400.607081][ T26] audit: type=1326 audit(1776601404.050:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9145 comm="syz.0.1366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedd6ac1819 code=0x7ffc0000 [ 400.682057][ T26] audit: type=1326 audit(1776601404.050:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9145 comm="syz.0.1366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedd6ac1819 code=0x7ffc0000 [ 400.783165][ T26] audit: type=1326 audit(1776601404.050:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9145 comm="syz.0.1366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedd6ac1819 code=0x7ffc0000 [ 401.234607][ T26] audit: type=1326 audit(1776601404.050:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9145 comm="syz.0.1366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7fedd6ac1819 code=0x7ffc0000 [ 401.294208][ T26] audit: type=1326 audit(1776601404.050:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9145 comm="syz.0.1366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedd6ac1819 code=0x7ffc0000 [ 401.334637][ T26] audit: type=1326 audit(1776601404.050:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9145 comm="syz.0.1366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fedd6ac1819 code=0x7ffc0000 [ 401.555633][ T9161] loop5: detected capacity change from 0 to 512 [ 401.588108][ T26] audit: type=1326 audit(1776601404.050:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9145 comm="syz.0.1366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fedd6ac1819 code=0x7ffc0000 [ 402.785610][ T9161] EXT4-fs (loop5): mounted filesystem without journal. Opts: usrquota,grpjquota=,lazytime,,errors=continue. Quota mode: writeback. [ 402.807909][ T9161] ext4 filesystem being mounted at /62/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 403.061005][ T9177] loop4: detected capacity change from 0 to 128 [ 404.286995][ T9177] FAT-fs (loop4): bogus number of reserved sectors [ 404.293738][ T9177] FAT-fs (loop4): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero [ 404.303275][ T9177] FAT-fs (loop4): Can't find a valid FAT filesystem [ 405.221005][ C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 406.648791][ T9185] loop0: detected capacity change from 0 to 512 [ 406.742064][ T9185] EXT4-fs (loop0): Ignoring removed bh option [ 406.775851][ T9185] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended [ 406.811492][ T9185] EXT4-fs (loop0): 1 truncate cleaned up [ 406.823850][ T9185] EXT4-fs (loop0): mounted filesystem without journal. Opts: bh,,errors=continue. Quota mode: none. [ 406.862972][ T9197] device batadv0 entered promiscuous mode [ 406.898695][ T9185] [ 406.901090][ T9185] ====================================================== [ 406.908123][ T9185] WARNING: possible circular locking dependency detected [ 406.915275][ T9185] syzkaller #0 Not tainted [ 406.919695][ T9185] ------------------------------------------------------ [ 406.926715][ T9185] syz.0.1382/9185 is trying to acquire lock: [ 406.932695][ T9185] ffff888056026e70 (&ei->xattr_sem){++++}-{3:3}, at: ext4_destroy_inline_data+0x24/0xe0 [ 406.942538][ T9185] [ 406.942538][ T9185] but task is already holding lock: [ 406.949905][ T9185] ffff888141fd4c58 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x20f/0x2df0 [ 406.960000][ T9185] [ 406.960000][ T9185] which lock already depends on the new lock. [ 406.960000][ T9185] [ 406.970412][ T9185] [ 406.970412][ T9185] the existing dependency chain (in reverse order) is: [ 406.979513][ T9185] [ 406.979513][ T9185] -> #1 (&sbi->s_writepages_rwsem){.+.+}-{0:0}: [ 406.988225][ T9185] percpu_down_read+0x46/0x1b0 [ 406.993623][ T9185] ext4_writepages+0x20f/0x2df0 [ 406.998991][ T9185] do_writepages+0x476/0x6e0 [ 407.004107][ T9185] __writeback_single_inode+0x153/0xda0 [ 407.010261][ T9185] writeback_single_inode+0x3cb/0x8e0 [ 407.016246][ T9185] write_inode_now+0x23b/0x2c0 [ 407.021531][ T9185] iput+0x5ab/0x8a0 [ 407.025862][ T9185] ext4_xattr_set_entry+0x34f4/0x3ea0 [ 407.031756][ T9185] ext4_xattr_block_set+0x4fd/0x2d20 [ 407.037561][ T9185] ext4_expand_extra_isize_ea+0xf3f/0x19b0 [ 407.043894][ T9185] __ext4_expand_extra_isize+0x301/0x3e0 [ 407.050228][ T9185] __ext4_mark_inode_dirty+0x469/0x700 [ 407.056210][ T9185] ext4_evict_inode+0xa8d/0x1090 [ 407.061757][ T9185] evict+0x4c9/0x8d0 [ 407.066354][ T9185] ext4_orphan_cleanup+0xad2/0x1320 [ 407.072078][ T9185] ext4_fill_super+0x8d6e/0x94f0 [ 407.077536][ T9185] mount_bdev+0x287/0x3c0 [ 407.082392][ T9185] legacy_get_tree+0xe6/0x180 [ 407.087594][ T9185] vfs_get_tree+0x88/0x270 [ 407.092538][ T9185] do_new_mount+0x24a/0xa40 [ 407.097564][ T9185] __se_sys_mount+0x2e3/0x3d0 [ 407.102887][ T9185] do_syscall_64+0x4c/0xa0 [ 407.107824][ T9185] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 407.114352][ T9185] [ 407.114352][ T9185] -> #0 (&ei->xattr_sem){++++}-{3:3}: [ 407.121999][ T9185] __lock_acquire+0x2c42/0x7d10 [ 407.127414][ T9185] lock_acquire+0x19e/0x400 [ 407.132439][ T9185] down_write+0x38/0x60 [ 407.137121][ T9185] ext4_destroy_inline_data+0x24/0xe0 [ 407.143026][ T9185] ext4_writepages+0x670/0x2df0 [ 407.148402][ T9185] do_writepages+0x476/0x6e0 [ 407.153528][ T9185] filemap_fdatawrite_wbc+0x1eb/0x240 [ 407.159423][ T9185] file_write_and_wait_range+0x14d/0x220 [ 407.165844][ T9185] ext4_sync_file+0x1ff/0xae0 [ 407.171134][ T9185] ext4_buffered_write_iter+0x338/0x3b0 [ 407.177200][ T9185] ext4_file_write_iter+0x74d/0x1700 [ 407.183106][ T9185] vfs_write+0x745/0xd60 [ 407.187922][ T9185] __x64_sys_pwrite64+0x19a/0x220 [ 407.193591][ T9185] do_syscall_64+0x4c/0xa0 [ 407.198666][ T9185] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 407.205194][ T9185] [ 407.205194][ T9185] other info that might help us debug this: [ 407.205194][ T9185] [ 407.215430][ T9185] Possible unsafe locking scenario: [ 407.215430][ T9185] [ 407.222898][ T9185] CPU0 CPU1 [ 407.228337][ T9185] ---- ---- [ 407.233966][ T9185] lock(&sbi->s_writepages_rwsem); [ 407.239170][ T9185] lock(&ei->xattr_sem); [ 407.246018][ T9185] lock(&sbi->s_writepages_rwsem); [ 407.253913][ T9185] lock(&ei->xattr_sem); [ 407.258250][ T9185] [ 407.258250][ T9185] *** DEADLOCK *** [ 407.258250][ T9185] [ 407.267196][ T9185] 2 locks held by syz.0.1382/9185: [ 407.272418][ T9185] #0: ffff8881464d0460 (sb_writers#5){++++}-{0:0}, at: vfs_write+0x295/0xd60 [ 407.282273][ T9185] #1: ffff888141fd4c58 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x20f/0x2df0 [ 407.293729][ T9185] [ 407.293729][ T9185] stack backtrace: [ 407.300371][ T9185] CPU: 0 PID: 9185 Comm: syz.0.1382 Not tainted syzkaller #0 [ 407.307739][ T9185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 407.318142][ T9185] Call Trace: [ 407.321420][ T9185] [ 407.324440][ T9185] dump_stack_lvl+0x188/0x250 [ 407.329212][ T9185] ? load_image+0x400/0x400 [ 407.333718][ T9185] ? show_regs_print_info+0x20/0x20 [ 407.339038][ T9185] ? print_circular_bug+0x12b/0x1a0 [ 407.344241][ T9185] check_noncircular+0x296/0x330 [ 407.349188][ T9185] ? deref_stack_reg+0xd0/0x120 [ 407.354046][ T9185] ? add_chain_block+0x940/0x940 [ 407.359069][ T9185] ? lockdep_lock+0xf1/0x1f0 [ 407.363662][ T9185] ? mark_lock+0x94/0x320 [ 407.368021][ T9185] ? _find_first_zero_bit+0xce/0xf0 [ 407.373239][ T9185] __lock_acquire+0x2c42/0x7d10 [ 407.378106][ T9185] ? verify_lock_unused+0x140/0x140 [ 407.383392][ T9185] ? mark_lock+0x94/0x320 [ 407.388046][ T9185] ? verify_lock_unused+0x140/0x140 [ 407.393425][ T9185] ? __lock_acquire+0x12e8/0x7d10 [ 407.398453][ T9185] ? verify_lock_unused+0x140/0x140 [ 407.403654][ T9185] lock_acquire+0x19e/0x400 [ 407.408163][ T9185] ? ext4_destroy_inline_data+0x24/0xe0 [ 407.413719][ T9185] ? read_lock_is_recursive+0x10/0x10 [ 407.419207][ T9185] ? rcu_read_lock_any_held+0xb0/0x130 [ 407.424675][ T9185] ? ext4_journal_check_start+0x180/0x250 [ 407.430399][ T9185] down_write+0x38/0x60 [ 407.434560][ T9185] ? ext4_destroy_inline_data+0x24/0xe0 [ 407.440158][ T9185] ext4_destroy_inline_data+0x24/0xe0 [ 407.445531][ T9185] ext4_writepages+0x670/0x2df0 [ 407.450391][ T9185] ? verify_lock_unused+0x140/0x140 [ 407.455600][ T9185] ? mark_lock+0x94/0x320 [ 407.460041][ T9185] ? __might_sleep+0xf0/0xf0 [ 407.464634][ T9185] ? ext4_readpage+0x2e0/0x2e0 [ 407.469417][ T9185] ? __lock_acquire+0x7d10/0x7d10 [ 407.474530][ T9185] ? do_raw_spin_lock+0x128/0x2f0 [ 407.479560][ T9185] ? do_raw_spin_unlock+0x11d/0x230 [ 407.484870][ T9185] ? ext4_readpage+0x2e0/0x2e0 [ 407.489744][ T9185] do_writepages+0x476/0x6e0 [ 407.494616][ T9185] ? filemap_fdatawrite_wbc+0x1e0/0x240 [ 407.500186][ T9185] ? __writepage+0x130/0x130 [ 407.504793][ T9185] ? __lock_acquire+0x7d10/0x7d10 [ 407.509832][ T9185] ? __rwlock_init+0x140/0x140 [ 407.514685][ T9185] ? generic_write_end+0x24d/0x3d0 [ 407.519802][ T9185] ? do_raw_spin_unlock+0x11d/0x230 [ 407.525011][ T9185] filemap_fdatawrite_wbc+0x1eb/0x240 [ 407.530416][ T9185] file_write_and_wait_range+0x14d/0x220 [ 407.536259][ T9185] ? __filemap_set_wb_err+0x1b0/0x1b0 [ 407.541645][ T9185] ext4_sync_file+0x1ff/0xae0 [ 407.546331][ T9185] ext4_buffered_write_iter+0x338/0x3b0 [ 407.551882][ T9185] ext4_file_write_iter+0x74d/0x1700 [ 407.557264][ T9185] ? rcu_read_lock_any_held+0xb0/0x130 [ 407.562727][ T9185] ? ext4_file_read_iter+0x700/0x700 [ 407.568013][ T9185] ? end_current_label_crit_section+0x14b/0x170 [ 407.574441][ T9185] ? memset+0x1e/0x40 [ 407.578429][ T9185] ? iov_iter_init+0xb4/0x170 [ 407.583109][ T9185] vfs_write+0x745/0xd60 [ 407.587996][ T9185] ? file_end_write+0x250/0x250 [ 407.593213][ T9185] ? __fget_files+0x40f/0x480 [ 407.598275][ T9185] ? __fdget+0x18b/0x210 [ 407.602516][ T9185] ? __x64_sys_pwrite64+0xf2/0x220 [ 407.607728][ T9185] __x64_sys_pwrite64+0x19a/0x220 [ 407.612852][ T9185] ? ksys_pwrite64+0x1c0/0x1c0 [ 407.617629][ T9185] ? lockdep_hardirqs_on+0x94/0x140 [ 407.622829][ T9185] do_syscall_64+0x4c/0xa0 [ 407.627249][ T9185] ? clear_bhb_loop+0x30/0x80 [ 407.631926][ T9185] ? clear_bhb_loop+0x30/0x80 [ 407.636604][ T9185] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 407.642501][ T9185] RIP: 0033:0x7fedd6ac1819 [ 407.646920][ T9185] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 407.666530][ T9185] RSP: 002b:00007fedd4d1b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000012 [ 407.675042][ T9185] RAX: ffffffffffffffda RBX: 00007fedd6d3afa0 RCX: 00007fedd6ac1819 [ 407.683364][ T9185] RDX: 000000000000fdef RSI: 0000200000000140 RDI: 0000000000000004 [ 407.691356][ T9185] RBP: 00007fedd6b57c91 R08: 0000000000000000 R09: 0000000000000000 [ 407.699535][ T9185] R10: 0000000000000e7c R11: 0000000000000246 R12: 0000000000000000 [ 407.707790][ T9185] R13: 00007fedd6d3b038 R14: 00007fedd6d3afa0 R15: 00007ffc61641728 [ 407.715865][ T9185] [ 407.736156][ T9198] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 465: padding at end of block bitmap is not set [ 407.759433][ T9202] loop4: detected capacity change from 0 to 512 [ 407.760665][ T9197] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 407.852077][ T9197] device batadv0 left promiscuous mode [ 407.858023][ T9185] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117 [ 408.045546][ T9185] EXT4-fs (loop0): This should not happen!! Data will be lost [ 408.045546][ T9185] [ 408.208070][ T9202] EXT4-fs (loop4): Ignoring removed bh option [ 408.227615][ T4840] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 64 with error 28 [ 408.240339][ T9202] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 408.292342][ T4840] EXT4-fs (loop0): This should not happen!! Data will be lost [ 408.292342][ T4840] [ 408.325499][ T4840] EXT4-fs (loop0): Total free blocks count 0 [ 408.325629][ T9202] EXT4-fs error (device loop4): ext4_iget_extra_inode:4573: inode #15: comm syz.4.1387: corrupted in-inode xattr [ 408.331906][ T4840] EXT4-fs (loop0): Free/Dirty block details [ 408.350285][ T4840] EXT4-fs (loop0): free_blocks=0 [ 408.355873][ T4840] EXT4-fs (loop0): dirty_blocks=65 [ 408.361093][ T4840] EXT4-fs (loop0): Block reservation details [ 408.367191][ T4840] EXT4-fs (loop0): i_reserved_data_blocks=65 [ 408.374541][ T9202] EXT4-fs error (device loop4): ext4_orphan_get:1411: comm syz.4.1387: couldn't read orphan inode 15 (err -117) [ 408.407330][ T9202] EXT4-fs (loop4): mounted filesystem without journal. Opts: auto_da_alloc=0x0000000000000002,grpid,bh,grpid,noauto_da_alloc,max_dir_size_kb=0x0000000000000005,init_itable=0x0000000000000009,init_itable,usrjquota=,nolazytime,norecovery,,errors=continue. Quota mode: none.